drupal.org
A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
Contact: mailto:security@drupal.org or click on the "Report security vulnerability" on a project page Acknowledgments: https://www.drupal.org/security and https://www.drupal.org/security/contrib Preferred-Languages: en Canonical: https://www.drupal.org/.well-known/security.txt Policy: https://www.drupal.org/drupal-security-team Hiring: jobs.drupal.org # Not recommended, please use main contact above. OpenBugBounty: https://openbugbounty.org/bugbounty/drupal_infra/
This policy crawled by Onyphe on the 2020-12-03 is sorted as securitytxt.
FireBounty © 2015-2025
