Use the proposed web standard "Security.txt"
What is "Security.txt"?
On their website ("https://securitytxt.org/") they say about themselves that they are "A proposed standard which allows websites to define security policies.". Further, they explain that they want websites to have a file that has information about where to report security vulnerabilities and other information that a bug hunter might need.
Why should Discord use it?
To make it easier for bug hunters to report security vulnerabilities and encourage them to hunt for more, in turn making discord a more secure place.
Is it hard to implement?
Not at all. They even have a file generator on their website. The output file just needs to be uploaded to the .well-known directory and that is it.
Are there other notable users?
Yes! For example, Google, Github, and LinkedIn use it.
2
कृपया टिप्पणी करने के लिए साइन इन करें करें.
टिप्पणियां
0 टिप्पणियां