Reporting Security Issues

If you believe you have discovered a vulnerability in a Starburst Data product or have a security incident to report, contact us at security@starburstdata.com.

Once we have received a vulnerability report, Starburst Data takes a series of steps to address the issue:

  • Starburst Data requests the reporter keep any communication regarding the vulnerability confidential.
  • Starburst Data investigates and verifies the vulnerability.
  • Starburst Data addresses the vulnerability and releases an update or patch to the software. If for some reason this cannot be done quickly or at all, Starburst Data will provide information on recommended mitigations.
  • Starburst Data publicly announces the vulnerability in the release notes of the update.
  • Release notes include a reference to the person/people who reported the vulnerability, unless the reporter(s) would prefer to stay anonymous.
  • Starburst Data will endeavor to keep the reporter apprised of every step in this process as it occurs.

We greatly appreciate the efforts of security researchers and discoverers who share information on security issues with us, giving us a chance to improve our products and services, and better protect our customers. Thank you for working with us through the above process.

Start Free with
Starburst Galaxy

Up to $500 in usage credits included

  • Query your data lake fast with Starburst's best-in-class MPP SQL query engine
  • Get up and running in less than 5 minutes
  • Easily deploy clusters in AWS, Azure and Google Cloud
For more deployment options:
Download Starburst Enterprise

Please fill in all required fields and ensure you are using a valid email address.