Huh, I just learned today that Fiat Chrysler's bug bounty program does not allow public disclosure of any kind. Thats crazy, I'd never agree to that.https://bugcrowd.com/fca
-
-
the verbiage on that page needs updating. it reflects that, by quantity of programs, the majority of the work we do is private crowdsourced security where nda is expected and normal (obvs it's different for public bug bounty or vdp) thanks for the call-out! (cc:
@zmanion)Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.