security.txt

For security researchers or people who found a security issue on a website, it can be hard to find a way to communicate about it appropriately. As a result, a lot of issues aren’t reported and others are disclosed without the team knowing about it before. To improve that situation, security.txt defines a standard to help organizations define the process for security researchers to securely disclose security vulnerabilities.