Stack

Bug Bounty / Vulnerability Disclosure Stack

Bug bounty/disclosure program pages with WebPage + Offer, FAQs, and breadcrumb navigation.

Open generator Validate in Rich Results Test

When to use this stack

Bug bounty program landing pages
Vulnerability disclosure policy pages with reward terms
Pages where FAQs clarify scope and reporting timelines

What's included

Web Page
Open generator
Defines the disclosure page and its summary.
Offer
Open generator
Expresses the bounty or disclosure offer terms.
Frequently Asked Questions
Open generator
Answers scope, timeline, and safe harbor questions.
Breadcrumb
Open generator
Provides navigation context for the bounty page.

Required properties (stack union)

Ensure every applicable required property is present in your implementation. Nested props reference their parent objects (for example, `offers.priceCurrency`).

availability

description

itemListElement[].name

mainEntity[].@type=Question

mainEntity[].acceptedAnswer.text

name

price

priceCurrency

url

Recommended properties (stack union)

dateModified

description

eligibleRegion

inLanguage

itemListElement[].item

mainEntity[].acceptedAnswer.text

mainEntity[].author.name

mainEntity[].name

priceValidUntil

Combined JSON-LD

Paste as a single script tag. Keep product details, offer data, shipping/returns, and FAQ answers in sync with the page.

Validate

[
  {
    "@context": "https://schema.org",
    "@type": "WebPage",
    "@id": "https://www.example.com/security/bug-bounty#page",
    "name": "Bug Bounty Program",
    "description": "Report security vulnerabilities and earn rewards under our disclosure policy.",
    "url": "https://www.example.com/security/bug-bounty",
    "inLanguage": "en-US",
    "dateModified": "2025-08-18"
  },
  {
    "@context": "https://schema.org",
    "@type": "Offer",
    "@id": "https://www.example.com/security/bug-bounty#offer",
    "name": "Security Bug Bounty",
    "description": "Rewards for eligible vulnerabilities based on severity and impact.",
    "price": "0.00",
    "priceCurrency": "USD",
    "availability": "https://schema.org/InStock",
    "eligibleRegion": "Worldwide",
    "url": "https://www.example.com/security/bug-bounty#submit"
  },
  {
    "@context": "https://schema.org",
    "@type": "FAQPage",
    "mainEntity": [
      {
        "@type": "Question",
        "name": "What is in scope?",
        "acceptedAnswer": {
          "@type": "Answer",
          "text": "Production web apps, APIs, and mobile apps listed in the scope section are eligible."
        }
      },
      {
        "@type": "Question",
        "name": "How quickly do you respond?",
        "acceptedAnswer": {
          "@type": "Answer",
          "text": "We acknowledge reports within 3 business days and provide updates weekly."
        }
      },
      {
        "@type": "Question",
        "name": "Do you provide safe harbor?",
        "acceptedAnswer": {
          "@type": "Answer",
          "text": "Yes. Researchers following the policy are protected from legal action."
        }
      }
    ]
  },
  {
    "@context": "https://schema.org",
    "@type": "BreadcrumbList",
    "itemListElement": [
      { "@type": "ListItem", "position": 1, "name": "Home", "item": "https://www.example.com" },
      { "@type": "ListItem", "position": 2, "name": "Security", "item": "https://www.example.com/security" },
      { "@type": "ListItem", "position": 3, "name": "Bug Bounty", "item": "https://www.example.com/security/bug-bounty" }
    ]
  }
]

Implementation steps

Start from your live product detail page content; ensure titles, prices, and availability match the page.
Embed one JSON-LD script in the head or just before the closing body tag using the combined example as a template.
Fill shipping details for each region you serve and keep them aligned with on-page shipping tables.
Attach your canonical MerchantReturnPolicy URL and keep the policy text in sync with Merchant Center.
Add 3–6 FAQs that address purchase blockers (shipping, returns, compatibility) and keep answers consistent with visible content.
Validate in the Rich Results Test and revalidate after price/availability/policy changes.

Common errors and fixes

Missing currency or availability: ensure `offers.priceCurrency` and `offers.availability` use ISO currency codes and schema URLs.
ShippingDetails missing destination or transit time: include `shippingDestination.addressCountry` and `deliveryTime.transitTime` with units.
MerchantReturnPolicy not linked: reference it from the Offer via `hasMerchantReturnPolicy` and provide a stable policy URL.
FAQ answers don't match the page: keep FAQ content identical to visible answers to avoid review or manual actions.

FAQs

Should I list reward tiers?

If reward tiers are published, add a separate Offer entry or include tiers in the Offer description.

Can I link to a third-party platform?

Yes. Keep the main policy on your domain and link to the submission platform in the Offer URL.

SwiftSchema

Intuitive Schema Generation at Your Fingertips