A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Security.txt for https://www.rockstargames.com as per RFC 9116 specification (https://www.rfc-editor.org/rfc/rfc9116)



# Canonical URI

Canonical: https://www.rockstargames.com/.well-known/security.txt



# Our vulnerability report submission form

Contact: https://hackerone.com/rockstargames/reports/new?type=team&report_type=vulnerability



# General-purpose security contact address

Contact: mailto:security@rockstargames.com



# Our bug bounty policy and program platform

Policy: https://hackerone.com/rockstargames?type=team



# Top bug bounty participants

Acknowledgements: https://hackerone.com/rockstargames/thanks



Hiring: https://www.rockstargames.com/careers/openings/department/security



Preferred-Languages: en



Expires: 2023-12-31T23:59:59z