From 1fc0fbb63e6d3ee6a74265bde9079e8eb9ef8e9d Mon Sep 17 00:00:00 2001 From: Justin Hutchings Date: Wed, 16 Oct 2019 10:29:36 -0400 Subject: [PATCH] Create SECURITY.md Creating an org-wide security policy based upon the Bug Bounty program definition. --- SECURITY.md | 7 +++++++ 1 file changed, 7 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..eaeecea --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,7 @@ +# GitHub Security Policy + +Software security researchers are increasingly engaging with Internet companies to hunt down vulnerabilities. Our bounty program gives a tip of the hat to these researchers and provides rewards of $30,000 or more for critical vulnerabilities. + +If you’ve found a vulnerability, [submit it here](https://hackerone.com/github). + +You can find useful information in our [rules](https://bounty.github.com/#rules), [scope](https://bounty.github.com/#scope), [targets](https://bounty.github.com/#scope) and [FAQ](https://bounty.github.com/#faqs).