# Whitelist

The whitelist feature allows companies to authorize bounty hunters' credentials, such as phone numbers, emails, or both, on specific in-scope assets. Whitelisting is applied on a per-asset basis, ensuring targeted access control. Bounty hunters can request whitelisting through the programs they are part of, enabling seamless collaboration while maintaining security and compliance.

## Enable Whitelisting

To enable whitelisting for an asset, companies should follow these steps:

1. **Navigate to Assets**: Go to `/company/assets`.
2. **Edit an Asset**: Select the asset you want to edit.

   * Locate the **Require Whitelist** dropdown option.
   * Choose the appropriate whitelisting requirement, such as phone, email, or custom input from user, from the dropdown.
   * Incase of requirement of custom input from user, you can mention the custom field description below this will be shown to the researcher while requesting for whitelisting.

   <figure><img src="/files/j10Zg092iWtpsUIxVaC7" alt=""><figcaption></figcaption></figure>

## Managing Whitelist Requests

To manage whitelist requests after authorizing on the platform, follow these steps:

1. **Navigate to Whitelist Requests**: Go to `/company/assets/whitelist`.
2. **View Requests**: All users who have requested whitelisting will be listed here.
3. **Filter Requests**:
   * Use filters to view requests by specific assets or across all assets.
   * Further refine results by request status: **Requested**, **Approved**, or **Rejected**.
   * Additionally you can view custom field entered by researcher as well: ![](/files/dHmBEUkJDpNS3vY0lhfI)
4. **Approve or Reject Requests**:
   * Select one or multiple users.
   * Click on the **Approve** or **Reject** button to take action.

<figure><img src="/files/QTIJpTh4Se5Rdpb9FTlU" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.bugbase.ai/company-guide/whitelist.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.