If you believe Procore has a security vulnerability, please contact us right away at security@procore.com and provide us with a report. We will investigate your report and do our best to quickly fix valid issues. In your report, please include a description of the vulnerability, and information to reproduce the vulnerability (including browser/OS versions, URLs, etc).
To learn about our security, please see our security information.