attrition.org
A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# https://datatracker.ietf.org/doc/draft-foudil-securitytxt/?include_text=1 # 2019-12-19 #Canonical: http://attrition.org/.well-known/security.txt #Contact: mailto:security@attrition.org #Preferred-Languages: en # https://securitytxt.org/ # 2021-03-20 Contact: root@attrition.org Expires: Wed, 31 Dec 2031 01:02 -0600 Encryption: Email for Signal contact information. Preferred-Languages: en Canonical: https://attrition.org/.well-known/security.txt
This policy crawled by Onyphe on the 2021-07-05 is sorted as securitytxt.
FireBounty © 2015-2024
