If you think that you have found a security vulnerability in SignServer, please report it to this email address: security@primekey.com

If you want to encrypt email traffic, see the keys page on https://www.signserver.org/signserver-keys/ for our PGP key.