john-light
commented
5 years ago @sohkai what do you think about implementing https://securitytxt.org/ ?
Closed sohkai closed 5 years ago
john-light
commented
5 years ago @sohkai what do you think about implementing https://securitytxt.org/ ?
sohkai
commented
5 years ago That would also be a great idea, we should definitely expose something like this on aragon.org! The footer link can even just point to this!
Right now, the security reporting guidelines are coupled with the documentation for the bug bounty.
We should re-organize this to separate them, so the security reporting guidelines are more clear for security researchers.