The U.S. Department of Labor (DOL) is committed to ensuring the security of the American public by protecting their information from unauthorized disclosure. This policy is intended to provide security researchers with clear guidelines for conducting vulnerability discovery activities and convey our preferences in how to submit discovered vulnerabilities to us.
We want security researchers to feel comfortable reporting vulnerabilities they’ve discovered – as set out in this policy – so that we can fix them and keep our users safe. We have developed this policy to reflect our values and uphold our sense of responsibility to security researchers who share their expertise with us in good faith.
We request that you:
Finders or researchers that comply with this policy and exercise an appropriate degree of care when performing vulnerability research will be considered authorized. We will work with you to understand and resolve the issue as quickly as possible. We will not recommend or pursue legal action related to your research.
This program follows Bugcrowd’s standard disclosure terms.
For any testing issues (such as broken credentials, inaccessible application, or Bugcrowd Ninja email problems), please email support@bugcrowd.com. We will address your issue as soon as possible.
Scope Type | Scope Name |
---|---|
web_application | https://*.dol.gov |
web_application | https://*.bls.gov |
web_application | https://*.apprenticeship.gov |
web_application | https://*.apprenticeships.gov |
web_application | https://*.employer.gov |
web_application | https://*.govloans.gov |
web_application | https://*.hirevets.gov |
web_application | https://*.trainingproviderresults.gov |
web_application | https://*.unionreports.gov |
web_application | https://*.veterans.gov |
web_application | https://*.benefits.gov |
web_application | https://*.disability.gov |
web_application | https://*.DOL-ESA.gov |
web_application | https://*.DOLETA.gov |
web_application | https://*.labor.gov |
web_application | https://*.worker.gov |
web_application | https://*.youthrules.gov |
This policy crawled by Onyphe on the 2021-09-21 is sorted as bounty.
FireBounty © 2015-2024