Security.txt Manager

This powerful yet user-friendly WordPress plugin enables you to create, edit, and manage your “security.txt” file directly from the WordPress dashboard. As one of the most critical files on any site, the “security.txt” file communicates your security policy and contact information to security researchers.

What is security.txt?

A proposed standard which allows websites to define security policies.

Read the RFC

Can I use this with multisite?

Yes! However, if you are using a subfolder installation it will only work for the main site. This is because you can only have one security.txt for a given domain or subdomain per the security.txt spec.

Technical Notes

• Requires PHP 7.2+.
• Requires WordPress 5.7+.
• Rewrites need to be enabled. Without rewrites, WordPress cannot know to supply /security.txt when requested.
• The plugin registers rewrite rules for /.well-known/security.txt and /security.txt; server-level rules may be needed if your web server handles those paths before WordPress.
• Your site URL must not contain a path (e.g. https://example.com/site/ or path-based multisite installs). Learn more on spec.

Contributing & Bug Report

Bug reports and pull requests are welcome on Github.

If you like Security.txt Manager, then consider checking out our other projects:

• Powered Cache – Caching and optimization for WordPress to help improve PageSpeed and Core Web Vitals.
• Magic Login Pro – Easy, secure, and passwordless authentication for WordPress.
• SessionQuota Pro – Limit concurrent sessions in WordPress.
• Stream Integration Pro – Upload, sync, restore, and manage WordPress videos with Cloudflare Stream.
• Easy Text-to-Speech – Convert written content into high-quality synthesized speech for WordPress.
• Handywriter – AI-powered writing assistant for WordPress.
• PaddlePress PRO – Paddle plugin for WordPress.