Instruction: Our APIs are the primary interface to Mapbox for many of our customers, and all actions a customer can take on their account run through them.
Instruction: [Maps SDK for Android](https://docs.mapbox.com/android/maps/overview/)
[Navigation SDK for Android](https://docs.mapbox.com/android/navigation/overview/)
Integrity requirements: medium
Max severity: critical
Asset identifier: https://docs.mapbox.com/api/
Asset type: URL
Availability requirement: medium
Confidentiality requirement: medium
Eligible for bounty: true
Eligible for submissions: true
Instruction: The Mapbox web services APIs allow for programmatic access to Mapbox tools and services.
- [Accounts Service APIs](https://docs.mapbox.com/api/accounts/)
- [Maps Service APIs](https://docs.mapbox.com/api/maps/)
- [Navigation Service APIs](https://docs.mapbox.com/api/navigation/)
- [Search Service APIs](https://docs.mapbox.com/api/search/)
Instruction: [Maps SDK for iOS](https://docs.mapbox.com/ios/maps/overview/)
Integrity requirements: medium
Max severity: critical
Asset identifier: https://github.com/mapbox
Asset type: SOURCE_CODE
Availability requirement: medium
Confidentiality requirement: medium
Eligible for bounty: true
Eligible for submissions: true
Instruction: Mapbox has 700+ public Github repositories that are within scope, though only reports that can be actively exploited on Mapbox infrastructure will be eligible for a monetary bounty.
Submissions on assets containing the "Mapbox" name but not owned by Mapbox are not eligible for bounty.
Some repositories in the Mapbox GitHub organization may contain experimental code and are not eligible for a bounty.
* Please submit any open source security issues directly to HackerOne, do not open security-related issues on public Github repositories.
* Please send any questions about the eligibility of an open source repository to security@mapbox.com.
A few of our popular open-source repositories:
[node-sqlite3](https://github.com/mapbox/node-sqlite3) | [node-pre-gyp](https://github.com/mapbox/node-pre-gyp) | [carmen](https://github.com/mapbox/carmen)
Instruction: Mapbox GL JS is a JavaScript library that uses WebGL to render interactive maps from vector tiles and Mapbox styles. It is part of the Mapbox GL ecosystem, which includes Mapbox Mobile, a compatible renderer written in C++ with bindings for desktop and mobile platforms.
