How do I report a security issue?
We use HackerOne to manage our Vulnerability Disclosure & Bug Bounty Program. If you are a security researcher who would like to report a vulnerability or bug, please email firstname.lastname@example.org with your HackerOne username or associated email address. We would be glad to invite you to our private program so that you may report your findings there.
If you're having an issue with the security of your personal Stitch Fix account, please .