A proposed standard which allows websites to define security policies.
📃 Project description
When security risks in web services are discovered by independent security researchers who understand the severity of the risk, they often lack the channels to properly disclose them. As a result, security issues may be left unreported. Security.txt defines a standard to help organizations define the process for security researchers to securely disclose security vulnerabilities.
Latest Internet Draft: https://securitytxt.io/
🎯 Why we need your support
Donations will be used to pay bug bounties to individuals who report valid security vulnerabilities in the security.txt project, and to cover the hosting costs.
Our ultimate goal is to collect a total of $2000 in our funding pool in order to launch the bug bounty program.
We also accept Bitcoin and ETH donations:
Patrons will be listed on our bug bounty program's policy page. We will have a section with your logo/avatar and name to show our appreciation for supporting the security.txt project.
security.txt owns the following accounts on other platforms:
security-txt 1568 Updated this week
A proposed standard that allows websites to define security policies.
securitytxt.org 51 Updated 3 months ago
Static website for security.txt.
security.txt joined 4 years ago.