-
Notifications
You must be signed in to change notification settings - Fork 5.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[Security Center] Add docs for security.txt file (#16954)
* [Security Center] Add docs for security.txt file * Deleting redirect
- Loading branch information
1 parent
e1ad1ff
commit 7d25aa7
Showing
2 changed files
with
39 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
37 changes: 37 additions & 0 deletions
37
src/content/docs/security-center/infrastructure/security-file.mdx
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
--- | ||
pcx_content_type: concept | ||
title: Set up your security.txt file | ||
sidebar: | ||
order: 4 | ||
--- | ||
|
||
To manage your [security.txt](https://en.wikipedia.org/wiki/Security.txt) file via the Cloudflare dashboard: | ||
|
||
1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), select your account and domain. | ||
2. Go to **Security** > **Settings** > **Enable Security.txt**. | ||
|
||
From here, you can create and manage your `security.txt` file to provide the security research team with a standardized way to report vulnerabilities. | ||
|
||
Fill in the following information: | ||
|
||
- **(Required) Contact**: You can enter one of the following to contact you about security issues: | ||
- An email address: The email address must start with `mailto:`. | ||
- A phone number: The phone number must start with `tel:`. | ||
- A URL link: The URL link must start with `https://`. | ||
|
||
Select **Add more** to add multiple contacts. | ||
- **(Required) Expires at**: Enter the expiration date and time of the `security.txt` file. | ||
- **Encryption**: A link to a key which security researchers can use to communicate with you. | ||
- **Acknowledgements**: A link to your acknowledgements page. | ||
- **Canonical**: Links to your `security.txt` file. | ||
- **Hiring**: A link to your security-related job openings. | ||
- **Policy**: A link to a policy describing what security researchers should do when searching for or reporting security issues. | ||
- **Preferred languages**: A list of language codes that your security team speaks. | ||
|
||
Once you have entered the necessary information, select **Save**. | ||
|
||
To edit your security.txt file, select **Security** > **Settings** > **Edit Security.txt**. | ||
|
||
To download your security.txt file, select **Security** > **Settings** > **Download Security.txt**. | ||
|
||
To delete your security.txt file, select **Security** > **Settings** > **Delete Security.txt**. |