# PlatPhorm News Security Policy
# https://securitytxt.org/

Contact: mailto:security@platphormnews.com
Contact: https://github.com/mbarbine/mcp-host-platphormnews/security/advisories/new
Expires: 2027-12-31T23:59:59.000Z
Encryption: https://mcp.platphormnews.com/.well-known/pgp-key.txt
Acknowledgments: https://mcp.platphormnews.com/security/acknowledgments
Preferred-Languages: en
Canonical: https://mcp.platphormnews.com/.well-known/security.txt
Policy: https://github.com/mbarbine/mcp-host-platphormnews/blob/main/SECURITY.md

# Scope
# This security policy covers all *.platphormnews.com and *.ph3ar.com domains
# including the MCP federation hub and all registered subdomains.

# Bug Bounty
# We do not currently have a formal bug bounty program, but we recognize
# and credit security researchers who report vulnerabilities responsibly.

# MCP Security
# The MCP server at mcp.platphormnews.com implements:
# - Rate limiting
# - Input validation
# - CORS restrictions
# - Audit logging
# - Request fingerprinting