elpatron 2dcfb8e2ee Add RFC 9116 compliant security.txt endpoint ...

- Implement /.well-known/security.txt endpoint for security vulnerability reporting
- Add SECURITY_CONTACT environment variable support
- Include proper HTTP headers (Content-Type, Cache-Control)
- Set automatic expiration date and preferred languages
- Add comprehensive security policy information
- Update .env.example with SECURITY_CONTACT variable
- Document security.txt endpoint in README.md with usage examples
- Follow RFC 9116 standard for responsible disclosure

2025-09-30 19:28:29 +02:00

2.2 KiB

Raw Blame History

View Raw