This powerful yet user-friendly WordPress plugin enables you to create, edit, and manage your "security.txt" file directly from the WordPress dashboard. As one of the most critical files on any site, the "security.txt" file communicates your security policy and contact information to security researchers.
A proposed standard which allows websites to define security policies.
When security risks in web services are discovered by independent security researchers who understand the severity of
the risk, they often lack the channels to disclose them properly. As a result, security issues may be left unreported.
security.txt defines a standard to help organizations define the process for security researchers to disclose security
vulnerabilities securely.
Yes! However, if you are using a subfolder installation it will only work for the main site. This is because you can
only have one security.txt for a given domain or subdomain per
the security.txt spec.
- Requires PHP 7.2+.
- Requires WordPress 5.7+.
- Rewrites need to be enabled. Without rewrites, WordPress cannot know to supply
/security.txtwhen requested. - Your site URL must not contain a path (e.g.
https://example.com/site/or path-based multisite installs). Learn more on spec.
This is a developer's portal for Security.txt Manager and should not be used for support. Please visit the support forums if you need to submit a support request.