Skip to main content

Never Miss A Policy Change

  • July 15th , 2016

Sometimes information is available, but not exactly easy to find. This should never be the case for a Security Team's policy.

Today, we are launching Policy Version Browsing. On every single Security Team page, you will now be able to see when the policy was last changed, and you will be able to click through to see all policy changes for the program.

Location of the view changes linkClick 'View changes' to show the different policies the team has had

For example:

You can see that HackerOne does not accept reports related to missing API rate limiting on If you click through our policy versions, you can see that we added this exclusion to our policy on June 2nd at 16:28 UTC. Check out change 2858720:

Example of policy diffing

If you have any feedback, we'd love to hear from you. You can always reach us at

Recent articles

Zero Daily Newsletter: Fun, yet informative, AppSec, bug bounty, and hacker news

Read the news every day, and check the usual websites? Want to get your industry news and have a little humor…

More Hardware, More Problems

Bounties are for hardware, too. Microwaves notwithstanding, there is an increasing amount of connected…

Bug fixes just got a little easier; HackerOne introduces bi-directional JIRA integration

It’s now possible to view updates on JIRA issues right inside your HackerOne Reports. The two-way integration…