Vulnerability disclosure program: Implement security.txt
-
Implementation of #2 -
Configure security.txt file - example: https://craftcms.com/.well-known/security.txt
- example: https://www.cisa.gov/security.txt
Contact: mailto:security@example.com
Expires: 2025-01-01T00:00:00z
Acknowledgments: https://www.example.com/security
Preferred-Languages: en
Policy: https://www.example.com/security
Note: Example.com currently does not have a bug bounty program or any kind of financial compensation for valid reports.
Edited by Janna