Skip to content


Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

Latest commit


Git stats


Failed to load latest commit information.
Latest commit message
Commit time

The Seal (dioseal)

Our Vision: A healthy and ubiquitous Internet Immune System
Our Mission: To drive vulnerability disclosure adoption through safety, simplicity, and standardization. is a collaborative and vendor-agnostic movement that engages security researchers, corporate and independent legal experts, and industry leaders from all around the world.

The Project exists to drive the accelerated adoption of vulnerability disclosure best practices including bi-lateral safe harbor, readability for non-legal and non-native language audiences, and a recognizable mark of solidarity with the movement.

The components

  • The Terms - A collection of boilerplate vulnerability disclosure policy templates for various geographic juridictions and industry verticals, including high-level generic and simplified term boilerplates.
  • The List - A community-powered list of every known VDP and public bug bounty program, along with its safe harbor status.
  • The Seal - A recognizable mark to indicate safety for hackers and adoption of best practice to customers.
  • Tools and Data - Useful data and tools for researchers, program owners, and legal teams.

Getting started

(Note: While this project engages the legal opinion of many, it does not constitute legal advice. Please consult your legal counsel for the specific suitability of the terms in your organization.)

  1. Choose the legal terms that best fit your vulnerabilty disclosure or bug bounty progam.
  2. Add the appropriate seal to your public program brief.
  3. Submit a pull request to add your program to the open-source program list.
  4. Let the world know you're joining the movement! Here are some examples of others who have.
  5. Contribute back! We're looking for lawyers, hackers, and experts to collaborate. Check our issues log.

For a more complete overview of, a presentation from GRIMMCon is available here, and a video walkthrough of the project is available here.


No releases published


No packages published

Contributors 4