wp-security-txt
A plugin for serving 'security.txt' in WordPress 4.9+, based on configuration settings.
5(1 reviews)
·60 active installs·Updated 8 years agoAs of April 2026, wp-security-txt is a WordPress netsec plugin with 60 active installations and a 5/5 rating from 1 reviews. It has been downloaded 1.9K+ times in total. Requires WordPress 4.9+ and PHP 7.0+. Available on WordPress.org since 2017. Last updated 8 years ago — may have compatibility concerns. Top alternative: security-txt.
5/51 reviews
60active installs
1.9K+total downloads
9 yearssince 2017
Overview
The purpose of this project is to create a set-it-and-forget-it plugin that can be installed without much effort to get a WordPress site compliant with the current security.txt spec. It is therefore highly opinionated but built for configuration. It will automatically configure itself but you are encouraged to visit the plugin settings page after activating it.
security.txt is a draft “standard” which allows websites to define security policies. This “standard” sets clear guidelines for security researchers on how to report security issues, and allows bug bounty programs to define a scope. Security.txt is the equivalent of robots.txt, but for security issues.
There is a help page built into the plugin if you need help configuring it. For developers, there is docume…
Screenshots
Ratings & Reviews
51 reviews
5 ★
1
4 ★
0
3 ★
0
2 ★
0
1 ★
0
Compatibility
| WordPress | 4.9+ requiredTested up to 4.9.29 |
| PHP | 7.0+ required |
Top Alternatives to wp-security-txt
Frequently Asked Questions
Changelog
1.0.0
- Initial release.
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.