PHPackages magenxcommerce/module-securitytxt - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. magenxcommerce/module-securitytxt ActiveMagento2-module[Security](/categories/security) magenxcommerce/module-securitytxt ================================= Security.txt file for Magento 2 websites 1.1.0(4y ago)041OSL-3.0PHPPHP ~7.3.0||~7.4.0 Since Oct 22Pushed 4y ago1 watchersCompare [ Source](https://github.com/magenxcommerce/module-securitytxt)[ Packagist](https://packagist.org/packages/magenxcommerce/module-securitytxt)[ RSS](/packages/magenxcommerce-module-securitytxt/feed)WikiDiscussions 1.1.0 Synced 2d ago READMEChangelog (2)Dependencies (3)Versions (4)Used By (1) Security.txt ============ [](#securitytxt) ### Summary [](#summary) > When security vulnerabilities are discovered by researchers, proper reporting channels are often lacking. As a result, vulnerabilities may be left unreported. This document defines a format ("security.txt") to help organizations describe their vulnerability disclosure practices to make it easier for researchers to report vulnerabilities. Source: The Magento\_Securitytxt module provides the following functionality: - allows to save the security configurations in the admin panel - contains a router to match application action class for requests to the `.well-known/security.txt` and `.well-known/security.txt.sig` files. - serves the content of the `.well-known/security.txt` and `.well-known/security.txt.sig` files. A valid security.txt file could look like the following example: ``` Contact: mailto:security@example.com Contact: tel:+1-201-555-0123 Encryption: https://example.com/pgp.asc Acknowledgement: https://example.com/security/hall-of-fame Policy: https://example.com/security-policy.html Signature: https://example.com/.well-known/security.txt.sig ``` Security.txt can be accessed at below location: `https://example.com/.well-known/security.txt` To create security.txt signature (security.txt.sig) file: `gpg -u KEYID --output security.txt.sig --armor --detach-sig security.txt` To verify the security.txt file's signature: `gpg --verify security.txt.sig security.txt` ### Health Score 22 — LowBetter than 22% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity3 Limited adoption so far Community6 Small or concentrated contributor base Maturity52 Maturing project, gaining track record How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~0 days Total 4 Last Release 1662d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/652aa98d25f6bb0dbacf7a805a9110b66e83d8222c60ca2d1b20fa31782a81d3?d=identicon)[magenxcommerce](/maintainers/magenxcommerce) ### Embed Badge ![Health badge](/badges/magenxcommerce-module-securitytxt/health.svg) ``` [![Health](https://phpackages.com/badges/magenxcommerce-module-securitytxt/health.svg)](https://phpackages.com/packages/magenxcommerce-module-securitytxt) ``` PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)