Open Source Vulnerability Disclosure Framework. Maintained by Bugcrowd.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.

Welcome to the Open Source Vulnerability Disclosure Framework

Update (4/27/18) - This repo will be deprecated and the project moved to over the next few weeks

This Framework is maintained by Bugcrowd and CipherLaw. It is designed to quickly and smoothly prepare your organization to work with the independent security researcher community while reducing the legal risks to researchers and companies. The policy itself has been written with both simplicity and legal completeness in mind.



Creative Commons License
Open Source Responsible Disclosure Framework by Bugcrowd is licensed under a Creative Commons Attribution 4.0 International License.