In this episode James introduces us to the idea of web security policies stored in a security.txt file. We have talked about vulnerability disclosure before and this ties directly into that conversation.

Link to Draft: https://tools.ietf.org/html/draft-foudil-securitytxt-03

Link to form to create the file: https://securitytxt.org/

Link to our blog post: https://www.developsec.com/2018/06/26/overview-of-web-security-policies/

For more info go to https://www.developsec.com or follow us on twitter (@developsec).

Join the conversations.. join our slack channel.  Email james@developsec.com for an invitation.

DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.