Your Hai Replay: Turning Security Data Into Actionable Insights for 2026

Every vulnerability report tells a story. At the start of 2026, those individual stories form a clearer picture of how your security program is evolving.

Turn last year’s data into actionable insights for what’s next with your Hai Replay, available on your HackerOne organization dashboard through January 31.

Here's how we transform your HackerOne data into your personalized Hai Replay.

What Hai Reply Uses (and What it Doesn’t)

Your Hai Replay analyzes vulnerability reports submitted to your program between January 1 and December 31, 2025. But not all reports are weighted equally in your story.

What makes it into your Replay:

• Reports with activity in 2025 (even if originally submitted earlier)
• All severity levels, because every security improvement matters
• Both resolved and in-progress reports

What we filter out:

• Duplicate reports
• Spam or noise reports
• Test submissions from your own team

What stays private:

• Internal comments and notes are not included in the analysis
• Sensitive report details: Only high-level categories and impacts are used
• Cross-program data: Your Replay only uses your program's data with no comparisons to others
• PII and confidential fields are automatically excluded from AI analysis

For performance and relevance, we deep-dive into your five most impactful reports when crafting your security stories. It’s your "greatest hits" rather than the full catalog.

Image

Hai: Your HackerOne AI Security Agent

Faster Fixes. Smarter Insights.

Learn more about Hai

Key Metrics Framing the Replay

Different slides in your Replay use different calculations, and here's why:

Response Time is measured from report submission to first meaningful response. This metric reflects your team's actual availability.

Resolution Time only counts reports that reached a resolved state. Reports still being investigated don't penalize your average. This gives you credit for thoroughness without rushing fixes.

Top Researchers are ranked by a combination of valid reports submitted and total bounties earned. This recognizes both volume contributors and those who find critical issues.

How Hai Crafts Your Story

Our AI system Hai identifies patterns and narratives in your data. Here's what happens behind the scenes:

1. Pattern Recognition: Hai analyzes your vulnerability categories to spot trends. Are you seeing more API issues than last year?
2. Context Generation: Each insight is crafted specifically for your program instead of generic templates.
3. Privacy Protection: Hai only accesses reports your profile already has permission to view.
4. Real-time Analysis: Your Replay is generated fresh each time, reflecting the most current data.

Interpreting the Replay Findings

Make the Most of Your Replay in 2026

Use your Replay as a tool for 2026:

1. Share with stakeholders: Export slides as PDFs to demonstrate security ROI.
2. Recognize your researchers: Share the Top Researchers slide on social media.
3. Plan improvements: Use the recommendations slide for 2026 initiatives.
4. Celebrate with your team: Every resolved vulnerability is a win worth acknowledging.

Unlike your music preferences, your security achievements deserve to be celebrated publicly. That's why we made sharing easy, with individual slides for specific wins, or the full PDF for the complete story.

Head to your organization dashboard before January 31, 2026 and look for "Your 2025 Replay."

Ensure last year’s learnings inform your next moves with Hai Replay