Skip to main content

Never Miss A Policy Change

  • July 15th , 2016

Sometimes information is available, but not exactly easy to find. This should never be the case for a Security Team's policy.

Today, we are launching Policy Version Browsing. On every single Security Team page, you will now be able to see when the policy was last changed, and you will be able to click through to see all policy changes for the program.

Location of the view changes linkClick 'View changes' to show the different policies the team has had

For example:

You can see that HackerOne does not accept reports related to missing API rate limiting on If you click through our policy versions, you can see that we added this exclusion to our policy on June 2nd at 16:28 UTC. Check out change 2858720:

Example of policy diffing

If you have any feedback, we'd love to hear from you. You can always reach us at

Recent articles

H1-415 Hackathon Delivers to Customers, Community, and Hackers

Just a few short weeks ago, an elite group of hackers huddled in conference rooms in a San Francisco high-rise…

Introducing CWE-based Weaknesses

HackerOne updated their vulnerability taxonomy to include a more complete weakness suite based on the industry-…

Intel launches its first bug bounty program

Our friends at Intel have an exciting announcement! Their bug bounty program is live.