Security at Mage

Mage security reporting, vulnerability disclosure, scope, and trust practices.

We take the security of Mage and our users seriously. If you believe you’ve found a vulnerability, we want to hear from you.

Report a vulnerability

Please email security@mage.ai with:

  • A description of the issue
  • Steps to reproduce (if applicable)
  • Any supporting materials (logs, screenshots, proof-of-concept)

We typically respond within 3 business days.

Guidelines

We ask that you:

  • Avoid accessing or modifying data that isn’t yours
  • Avoid actions that could impact other users or system availability
  • Give us time to investigate before public disclosure
  • Act in good faith to minimize impact

Scope

This applies to Mage’s hosted platform, APIs, and official repositories.

Trust

Mage is built with a focus on reliability, privacy, and security.

Our practices are aligned with industry standards, including SOC 2 Type II certification .