Describe the bug
The security.txt used on the securitytxt.org expired on March 27th this year.
To Reproduce
- Go to 'the security.txt'
- The second line reads “Expires: 2026-03-27T00:00:00.000Z”
- See error
Expected behavior
The security.txt on the website about the security.txt should not be expired.
Screenshots
Contact: https://hackerone.com/ed
Expires: 2026-03-27T00:00:00.000Z
Acknowledgments: https://hackerone.com/ed/thanks
Preferred-Languages: en, fr, de
Canonical: https://securitytxt.org/.well-known/security.txt
Policy: https://hackerone.com/ed?type=team&view_policy=true
Desktop (please complete the following information):
any
Smartphone (please complete the following information):
any
Additional context
Not a problem since the information in the security.txt is not to be used according to RFC 9116 but the web site given as Contact: is not a good example. (I’d expect that page to contain a contact form or a list of contact methods.)
Describe the bug
The security.txt used on the securitytxt.org expired on March 27th this year.
To Reproduce
Expected behavior
The security.txt on the website about the security.txt should not be expired.
Screenshots
Desktop (please complete the following information):
any
Smartphone (please complete the following information):
any
Additional context
Not a problem since the information in the security.txt is not to be used according to RFC 9116 but the web site given as
Contact:is not a good example. (I’d expect that page to contain a contact form or a list of contact methods.)