diff options
author | Matthieu Aubry <matt@piwik.org> | 2014-12-02 01:19:49 +0300 |
---|---|---|
committer | Matthieu Aubry <matt@piwik.org> | 2014-12-02 01:19:49 +0300 |
commit | 588f28b050dd9025a7b92afbf9bf061113331eb7 (patch) | |
tree | aaa8f9d690785ca71857092a4d10c15f9cf689e8 /SECURITY.md | |
parent | 1a2c0ad31d495a7ef7cb0a5f47a1378ff591e3bc (diff) |
Created SECURITY.md file, fixes #6779
Diffstat (limited to 'SECURITY.md')
-rw-r--r-- | SECURITY.md | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000000..36ef067a5b --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,21 @@ +# Reporting Security Issues + +## Security Bug Bounty Program + +The Piwik Security Bug Bounty Program is designed to encourage security research in Piwik software and to reward those who help us create the safest web analytics platform. The bounty for valid critical security bugs is a **$555** (US) cash reward. The bounty for non-critical bugs is **$242** (US), paid via Paypal. + + +## Responsible disclosure by email + +If you have found a securty issue in Piwik please read [our security notes](http://piwik.org/security/) regarding responsible disclosures. + +[Email your Report Vulnerability to the Piwik Security team](mailto:security@piwik.org?subject=Reporting%20Vulnerability%20in%20Piwik) + + +## Improve your Piwik Server Security + +[Secure Piwik server](http://piwik.org/docs/how-to-secure-piwik/): follow these steps to keep your Piwik data safe. + +## Security announcements + +Please subscribe to [the Changelog](http://piwik.org/changelog/) ([rss feed](http://piwik.org/changelog/feed/)) to be notified of new releases (including security releases). |