Atlassian recently explored the strategic, legal, and social nuances of vulnerability disclosure programs (VDPs) with Bugcrowd. In an interview with some of our top security engineers we discuss why every organization needs a VDP and best practice for managing a VDP.
Check out: https://www.bugcrowd.com/resources/guides/the-ultimate-guide-to-vulnerability-disclosure/