It'd be great to make sure people creative valid security.txt files. Some validation could include:
- Verifying that a
: was included in the value of the Contact: directive (this would catch people who don't include mailto: and just put an email address directly) -- this error could probably be ignorable.
This could also apply to [and even be a bit stricter there (require URLs only, for example)]
- Ensuring that a
Contact: directive is set
- Ensuring that the
Preferred-Languages directive only contains commas, dashes, spaces, and letters
It'd be great to make sure people creative valid security.txt files. Some validation could include:
:was included in the value of theContact:directive (this would catch people who don't includemailto:and just put an email address directly) -- this error could probably be ignorable.This could also apply to [and even be a bit stricter there (require URLs only, for example)]
Contact:directive is setPreferred-Languagesdirective only contains commas, dashes, spaces, and letters