Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Perl

Solidity

TypeScript

Python

Kotlin

Elixir

Ruby

C

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Elm

Shell

PHP

C#

R

Nix

Ruby

Julia

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇾🇹 Mayotte

🇺🇿 Uzbekistan

🇮🇲 Isle of Man

Kosovo

🇸🇲 San Marino

🇲🇨 Monaco

🇳🇵 Nepal

🇲🇲 Myanmar (Burma)

All Countries Compare Countries

bugcrowd/disclosure-policy

This repository has been archived on 07/Jun/2021
Stars
128
Rank 281,044 (Top 6 %)
Language
Created over 10 years ago
Updated over 3 years ago

bugcrowd/disclosure-policy

bugcrowd

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Open Source Vulnerability Disclosure Framework. Maintained by Bugcrowd and Cipherlaw. Merged with https://github.com/disclose/dioterms.

Welcome to the Open Source Vulnerability Disclosure Framework

Update (4/27/18) - This repo will be deprecated and the project moved and merged with https://github.com/disclose/dioterms over the next few weeks

Update (10/27/19) - This repo, along with the master JSON for The List, has been moved to https://github.com/disclose/disclose

This Framework is maintained by Bugcrowd and CipherLaw. It is designed to quickly and smoothly prepare your organization to work with the independent security researcher community while reducing the legal risks to researchers and companies. The policy itself has been written with both simplicity and legal completeness in mind.

Setting up a Vulnerability Disclosure Program - A step by step best practices guide on how to setup your program.
Vulnerability Disclosure Policy - A boilerplate vulnerability disclosure policy.

=============================

License

Open Source Responsible Disclosure Framework by Bugcrowd is licensed under a Creative Commons Attribution 4.0 International License.

bugcrowd_university

Open source education content for the researcher community

HUNT

vulnerability-rating-taxonomy

Bugcrowd’s baseline priority ratings for common security vulnerabilities

tipjar

templates

Repository to house markdown templates for researchers

test-summary-buildkite-plugin

Buildkite plugin to summarise all test failures as an annotation

directory

ecs-deployment-monitor

Monitor an ECS Deployment

aws-iam-proxy

This proxy signs requests with AWS IAM credentials.

adama

Adama - Command and Invoker Pattern For Getting Things Done

vrt-ruby

Ruby library for interacting with Bugcrowd's VRT

ecs-service-image-updater

Update an ECS service to use a new Docker image

levelup

ecs-task-runner

Run a Docker task on AWS ECS and stream logs back via AWS Cloudwatch Logs

double_red

API for collecting Double Red color sensor readings (Winter 2017 hackathon)

hedge

Percy ↔️ GitHub integration

ecs-task-definition-validator

Validates ECS Task Definitions with JSON Schema

methodology-taxonomy

The BMT explains the baselines for different types of testing on bugcrowd.com

ecr-pusher

ECR Pusher assists pushing docker images to AWS Elastic Container Registries

homebrew-cartons

Homebrew tap for apps we release

drpepper

Dr Pepper needs help with their new AWS infrastructure

rubocop-bugcrowd

Bugcrowd-specific Rubocop cops

bmt-ruby

Rubygem for the Bugcrowd Methodology Taxonomy