From 6bac9b9b88ea1f93df3a9b1c335ea52308bdb758 Mon Sep 17 00:00:00 2001 From: Piotr Kaminski Date: Thu, 30 May 2019 12:42:33 -0500 Subject: [PATCH] Create Security.md file to show on GitHub Security/Policy page Create Security.md file to show on GitHub Security/Policy page as default policy --- SECURITY.md | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 000000000000..2b06199e5f95 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,10 @@ +# Reporting Security Issues + +Magento values the contributions of the security research community, and we look forward to working with you to minimize risk to Magento merchants. + +## Where should I report security issues? + +We strongly encourage you to report all security issues privately via our [bug bounty program](https://hackerone.com/magento). Please provide us with relevant technical details and repro steps to expedite our investigation. If you prefer not to use HackerOne, email us directly at `psirt@adobe.com` with details and repro steps. + +## Learning More About Security +To learn more about securing a Magento store, please visit the [Security Center](https://magento.com/security).