/source/vulnerability-acknowledgements/index.html.md

---
layout: markdown_page
title: Security Researcher Acknowledgments
---

To report an issue please read our [responsible disclosure policy](/disclosure).

GitLab.com would like to thank the following individuals and organisations who
have made GitLab safer by privately reporting security issues.

## 2016

- Hussain Adnan Hashim - [@Hussain_infosec](https://www.facebook.com/profile.php?id=100004366368341)
- Jérémy Chatard - [@jchatard](https://twitter.com/jchatard)
- Justin Gerhardt
- Vishwaraj Bhattrai - [@vishwaraj101](https://twitter.com/vishwaraj101)
- AnirudhAnand - [0daylabs](https://www.0daylabs.com/)
- [Jobert Abma](https://twitter.com/jobertabma) - [HackerOne](https://hackerone.com/jobert)
- Patrick Fiedler  
    - [!1946](https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/1946) 

## 2015

- Kamil Trzciński - [Polidea](http://www.polidea.com/)
- [Nithish Varghese](https://www.facebook.com/nithish.varghese)
- Mohamed Abdelbaset Elnoby, Senior Information Security Analyst at Seekurity.com
- Artem Chistyakov - [@artemchistyakov](https://twitter.com/artemchistyakov)
- [Ciro Santilli](http://www.cirosantilli.com/)
- [C Vishnu Vardhan Reddy](https://www.facebook.com/vishnu.dfx)
- [Sane Sindhuja Reddy](https://www.facebook.com/sindhuja.reddy.137)
- [Muhammad Shahzaib](http://www.facebook.com/shazaib.malik.56)
- [Ben khlifa Fahmi](https://twitter.com/benkhlifa_fahmi) [(Tunisian Whitehats Security)](http://benkhlifa.com/)
- [Shawar Khan](https://www.facebook.com/shawarkhanskofficial)

## 2014

- [Wesecureapp](http://wesecureapp.com)
- Hugh Davenport - [All The Things Ltd](http://allthethings.co.nz)
- Frans Rosén - [https://detectify.com](https://detectify.com)
- Mika Mäenpää, Department of Pervasive Computing @ Tampere. University of Technology
- Filippos Mastrogiannis - [LinkedIn](https://www.linkedin.com/pub/filippos-mastrogiannis/68/132/177)
- Mazen Gamal Mesbah - [@MazenGamal](https://twitter.com/mazengamal)
- Evan Ricafort - [www.evanricafort.com](http://www.evanricafort.com)
- ChenQin, Network and Information Security Lab @ Tsinghua University
- Simone Memoli - [@Simon90_Italy](https://twitter.com/Simon90_Italy)
- Muhammad Talha Khan - [facebook.com/mtk911](https://www.facebook.com/mtk911)
- Nakul Mohan - [@Anonymous_India](https://twitter.com/Nakul_Mohan_Cia)
- Hardik Tailor - [@iamhardiktailor](https://twitter.com/iamhardiktailor)
- Sergio Galán - [@NaxoneZ](https://twitter.com/NaxoneZ)
- Anurag Giri - [facebook.com/Surgent10cross](https://www.facebook.com/Surgent10cross)
- Shahee Mirza - [@shaheemirza](https://twitter.com/shaheemirza)
- Wyatt J. Brown
- Jakub Zoczek - [Blog](http://zoczus.blogspot.com)
- Ben Campbell of MWR InfoSecurity - [labs.mwrinfosecurity.com](https://labs.mwrinfosecurity.com)

## 2013 - 2011

- Yuji Kosuga - [@yujikosuga](https://twitter.com/yujikosuga)
- M.R.Vignesh Kumar - [@vigneshkumarmr](https://twitter.com/vigneshkumarmr)
- [Ajay Singh Negi](http://computersecuritywithethicalhacking.blogspot.in/) - [@AjaySinghNegi](https://twitter.com/ajaysinghnegi)
- Krutarth Shukla - [@Krutarth Shukla](https://twitter.com/KrutarthShukla)
- [Shashank](http://www.freemium-devils.in/) - [@cyberboyIndia](https://twitter.com/cyberboyIndia)
- Atulkumar Hariba Shedage
- Rafay Baloch - [http://rafayhackingarticles.net](http://rafayhackingarticles.net/)
- Himanshu Kumar Das - [@mehimansu](https://twitter.com/mehimansu)
- Ali Hasan Ghauri - [http://alihassanpenetrationtester.blogspot.com/](http://alihassanpenetrationtester.blogspot.com/)
- Remy van Elst - [https://raymii.org](https://raymii.org/)
- Chiragh Dewan - [@ChiraghDewan](https://twitter.com/ChiraghDewan)
- Emanuel Bronshtein - [@e3amn2l](https://twitter.com/e3amn2l)
- Kamil Sevi - [@kamilsevi](https://twitter.com/kamilsevi)
- [Guifré Ruiz Utgés](https://linkedin.com/in/guifre)
- Ricardo Sateler - [@rsateler](https://twitter.com/rsateler)
- Tejash Patel - [http://www.backtracktutorial.com](http://www.backtracktutorial.com/)
- Adam Ziaja - [http://adamziaja.com](http://adamziaja.com/)
- Frans Rosén - [https://detectify.com](https://detectify.com/)
- Ehraz Ahmed - [@securityexe](https://twitter.com/securityexe)
- [Muhammad Mujtaba](http://www.twitter.com/mushti) - [BugSheet](http://www.bugsheet.com)
- [Narendra Bhati(R00t Sh3ll)](https://twitter.com/NarendraBhatiB) - Cyber Octet Pvt. Ltd.
- NITESH SHILPKAR - [@NiteshShilpkar](https://twitter.com/NiteshShilpkar)
- [Mayank Bhatodra](https://www.facebook.com/iamyourfri3nd)
- Joe DeMesy - [Bishop Fox](http://www.bishopfox.com/)
- Osanda Malith Jayathissa - [@OsandaMalith](https://twitter.com/OsandaMalith)
- Manish Bhattacharya - [http://manishbhattacharya.com](http://manishbhattacharya.com)
- [Saurabh Chandrakant Nemade](https://www.facebook.com/saurabh.nemade)
- Pradeep - [@_IND3C0D3](https://twitter.com/_IND3C0D3)
- Pralhad Chaskar - [@c0d3xpl0it](https://twitter.com/c0d3xpl0it)
- Devesh Bhatt - [@deveshbhatt11](https://twitter.com/deveshbhatt11)
- [Daksh Patel](https://facebook.com/dakshxss)
- Ketankumar B. Godhani - [@KBGodhani](https://twitter.com/KBGodhani)
- Mukesh Dhama and Rishiraj Sharma
- joernchen of [Phenoelit](http://www.phenoelit.de/)
- Nigel Kukard - [http://www.allworldit.com](http://www.allworldit.com)
- Sahil Saif - [@bewithsahilsaif](https://twitter.com/bewithsahilsaif)
- Matthew DeTullio - [http://www.linkedin.com/in/mjdetullio](http://www.linkedin.com/in/mjdetullio)
- Abdullah Hussam Gazi - [@Abdulahhusam](https://twitter.com/Abdulahhusam)
- Agastya Rudroj
- Jay Turla of HP Fortify