Vulnerability Disclosure Policy

The Ministry of Justice (MoJ) Security Vulnerability Disclosure Policy is published as part of the MoJ Digital & Technology blog.

Thanks & Acknowledgements

Where security researchers have submitted qualifying vulnerability reports and have accepted our offer to be publicly thanked and acknowledged for their efforts, they will be listed on the dedicated thank you page within the MoJ Digital & Technology blog.

Feedback

If you wish to provide feedback or suggestions on the MoJ Security Vulnerability Disclosure Policy, contact our security team: cybersecurity+vulnerabilitydisclosure@digital.justice.gov.uk.

The policy will naturally evolve over time; your input is welcome and will be valued to ensure that the policy remains clear, complete, and relevant.

h/t to https://www.bbc.com/backstage/security-disclosure-policy/