Security spam is everywhere. Researchers asking for bounties before they disclose supposed serious vulnerabilities. vuln:vet uses sophisticated AI and other spam fighting technology to help startups manage vulnerability messages.
There's so much security spam out there. It's draining valuable time from engineering and security teams who are constantly vetting low-quality submissions by bounty hunters. Often submissions are hard to understand, out-of-scope as outlined in the security.txt document or just plain fabricated. Sometimes the urgency with which some of these submissions are voiced can expose teams and companies to vulnerabilities lurking in the attachments.
I think we can do better. And it doesn't have to be a super-expensive product. So that's why I've embarked on trying to make this happen. Please register so you can get in early at discounted prices or share ideas for other features you may find useful.
