Techly NewsGet the app

Get the latest tech news

Most IT companies fail to serve security.txt for RFC 9116 in 2025


happen to maintain a public list of companies using libexpat in hardware, though not complete by any means. Last time I tried mass-mailing companies about a security issue in April 2024.

2025-03-02 20:50I happen to maintain a public list of companies using libexpat in hardware, though not complete by any means. So I felt like re-checking how many of these 50 companies are serving/.well-known/security.txt(or the significantly less common/security.txt) a la RFC 9116 in 2025. If you work at a company that does not serve/.well-known/security.txt yet, please fix it or share a link to https://securitytxt.org/ with a co-worker or management of yours so they can — thank you!

Get the Android app

Or read this on Hacker News

Read more on:

Photo of RFC

RFC

Photo of IT companies

IT companies

Photo of security.txt

security.txt

Related news:

News photo

RFC 9557: Date and Time on the Internet: Timestamps with Additional Information

News photo

The "simple" 38 step journey to getting an RFC

News photo

RFC 35140: HTTP Do-Not-Stab (2023)

« A mechanically verified garbage collector for OCaml [pdf]
China’s Ambassador Criticizes Australia’s Move to Limit DeepSeek AI »