If you’ve got an idea or suggestion you can:
When raising bugs please explain the issue in good detail and provide a guide to how to replicate it.
When describing the bug it's useful to follow the format:
- what you did
- what you expected to happen
- what happened
If you would like to make a change to the security.txt file, simply raise a Pull Request with the change, and give a reasoning for the change in your PR comments. Once merged to the main branch and approved by a codeowner, the change will be deployed.
Once a vulnerability researcher has raised a bug via our Vulnerability Disclosure Program and the issue has been fixed - a DfE employee can raise a change to the thanks.txt file to allow us to raise thanks for the report.
If you would like to make changes to the terraform or github actions, a PR can be raised also.