1 comment

[ 3.2 ms ] story [ 11.4 ms ] thread
Is something like a security.txt not a required part of IT certification? I would say a procedure around vulnerability handling and reporting to be required.