Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
gamer191
1 day ago
|
parent
|
context
|
favorite
| on:
cURL removes bug bounties
Agreed, although the reimbursement should be based on whether a reasonable person could consider that to be a vulnerability. Often it’s tricky for outsiders to tell whether a behaviour is expected or a vulnerability
dlcarrier
23 hours ago
[–]
Yeah, the reimbursement would need to be for a good-faith submission worth considering, even if it wasn't actionable.
reply
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
