Roku is committed to providing a secure and trusted platform for our users. We value security researchers and others who keep a watchful eye and responsibly disclose any security issues. If you identify a security vulnerability in a Roku product or service, we ask that you please disclose the issue to us via our Vulnerability Disclosure Program (VDP) powered by BugCrowd. The VDP submission form is below: