Hacker News new | past | comments | ask | show | jobs | submit login

[flagged]



In the blog article, they state:

> we have made sso a priority target for penetration testing by researchers on our bug bounty program — we’ve paid bounties for a number of reported issues!

While that makes it clear that they cared about penetration testing, it isn't what the person was asking to that you replied to -- they asked if they had contracted with an independent company to do testing. This did not seem to be answered by the article, and seems like a reasonable question to ask.


We did talk in the blog article about engaging with Security Innovation too.


Your comment is incredibly unhelpful and does not contribute to the discussion. HN is not the kind of platform to shitpost on.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: