{"id":4730,"date":"2017-05-15T16:02:19","date_gmt":"2017-05-15T16:02:19","guid":{"rendered":"https:\/\/wordpress.org\/news\/?p=4730"},"modified":"2021-06-04T12:00:54","modified_gmt":"2021-06-04T12:00:54","slug":"wordpress-now-on-hackerone","status":"publish","type":"post","link":"https:\/\/wordpress.org\/news\/2017\/05\/wordpress-now-on-hackerone\/","title":{"rendered":"WordPress Now on HackerOne"},"content":{"rendered":"<p>WordPress has grown a lot over the last thirteen years \u2013 it now powers more than 28% of the top ten million sites on the web. During this growth, each team has worked hard to continually improve their tools and processes. Today, the WordPress Security Team is happy to announce that <a href=\"https:\/\/hackerone.com\/wordpress\">WordPress is now officially on HackerOne<\/a>!<\/p>\n<p><a href=\"https:\/\/www.hackerone.com\/about\">HackerOne<\/a> is a platform for security researchers to securely and responsibly report vulnerabilities to our team. It provides tools that improve the quality and consistency of communication with reporters, and will reduce the time spent on responding to commonly reported issues. This frees our team to spend more time working on improving the security of WordPress.<\/p>\n<p>The security team has\u00a0been working on\u00a0this project for quite some time.\u00a0Nikolay Bachiyski started the team working on it\u00a0just over a year ago. We ran it as a private program while we worked out our procedures and processes, and are excited\u00a0to finally make it public.<\/p>\n<p>With the announcement\u00a0of the WordPress\u00a0HackerOne program we are also introducing\u00a0bug bounties. Bug bounties\u00a0let us reward reporters for disclosing issues to us and helping us secure our products and infrastructure. We&#8217;ve already awarded more than $3,700 in bounties to seven different reporters! We are thankful to Automattic for paying the bounties on behalf of the WordPress project.<\/p>\n<p>The program and bounties cover all our projects including WordPress, BuddyPress, bbPress, GlotPress, and WP-CLI as well as all of our sites including WordPress.org, bbPress.org, WordCamp.org, BuddyPress.org, and GlotPress.org.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>WordPress has grown a lot over the last thirteen years \u2013 it now powers more than 28% of the top ten million sites on the web. During this growth, each team has worked hard to continually improve their tools and processes. Today, the WordPress Security Team is happy to announce that WordPress is now officially [&hellip;]<\/p>\n","protected":false},"author":140668,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"episode_type":"","audio_file":"","cover_image":"","cover_image_id":"","duration":"","filesize":"","date_recorded":"","explicit":"","block":"","filesize_raw":"","jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[15],"tags":[],"class_list":["post-4730","post","type-post","status-publish","format-standard","hentry","category-security"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pZhYe-1ei","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/4730","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/users\/140668"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/comments?post=4730"}],"version-history":[{"count":3,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/4730\/revisions"}],"predecessor-version":[{"id":4873,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/4730\/revisions\/4873"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/media?parent=4730"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/categories?post=4730"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/tags?post=4730"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}