A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 # For critical exploits that should be fixed before they are public # Or for exploits that are about elixi.re and not the software specifically Contact: mailto:security@elixi.re Contact: mailto:elixiresecurity@ave.zone # This is Ave's personal encryption key # If you choose to encrypt your email, then please send it to: ave at ave dot zone Encryption: https://keyserver.ubuntu.com/pks/lookup?op=get&search=0x1FFCCBE8858AD07D34C2C434398DD7BD03276F6D # For non-critical bugs related to elixire software, please open a git issue # Backend Contact: https://gitlab.com/elixire/elixire # Frontend Contact: https://gitlab.com/elixire/frontend # While we cannot give bounties as we're a volunteer team with zero profit from # our projects, we do like to acknowledge the security researchers that find # vulnerabilities, with their approval. Acknowledgments: https://wf.lavatech.top/lavatech-hall-of-fame/ # While we prefer English, we do have staff members who can understand Brazilian Portugese and Turkish. Preferred-Languages: en, pt, tr Canonical: https://elixi.re/.well-known/security.txt -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEH/zL6IWK0H00wsQ0OY3XvQMnb20FAl6vBP0ACgkQOY3XvQMn b20UpQ//Qj7AL5AGL3uFQR9ivOU6C4MRnbs1loDvQpuMEie/4X4W1cz5IM5ISK/X t0fMVUemVLOqRgVZGIwVL/0kKPIk7/8zahO4rMPSEeSUqB+pIlz/0HrVpsYrogq3 N9i8Z8028nqmeOmhbdtHC0MiA/hN7CTs7Wl1xFXP8bwZwGmVPavu3w9YYLd+eILI 0HgeYkrdrHiaPsIFRq2lCHJ5/xwWhLr2y1N3wYhjtul91H16k8snXRudU4CQNPOa EQJtw/TkyZfT51Jsobeb9tm71n/azR/2RuZU9LdgzpzcwetEPF6Mro8s869CryzX RC+kTB93vMuJ+HAwS0nwAwPzYeq9gp8qaHAl/+DhR5hqNGpoQR4szfWy56dexmYx 4vTcK8b7Va0UPWq0Ix0o6YYHOmrc0tliGUl64ELV45Xao47xRiA2TDyzXQsz/dUM nWXAfZDOzxFq/OWagqyWMx/EQu/ToElcCVqAEEmh17O4oMlny+Az6ZnEMaYjqgtU ZF7fSNzA6IHWlrs7DVcFfQLU+ZoIeRs9S4FMBxw1v4fT4CrRByACuQUf5MK1cG/X +wRJhi2/udyhrDqoiutKK/voibGg1KyrRwZsBnu8B1izADVnq7XYUIHJovox/f+v 08+I4CcedFdo8jHVe19X4MVR6i8lqEL9pzjUY+T1oza1nFkqoIU= =xtkL -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2020-05-13 is sorted as securitytxt.
FireBounty © 2015-2024