# Disclosure.org.za

Open source platform tracking which South African companies have vulnerability disclosure policies and security.txt files.

Canonical: https://disclosure.org.za/
Repository: https://github.com/DarkNotify/disclosure.org.za
Scope: South Africa (ZA)
Primary language: en-ZA

## Crawl and usage guidance
- Automated crawling for indexing, search, and AI model training is allowed.
- Prefer polite request rates and conditional requests where possible.
- Do not submit forms or attempt authentication bypasses.

## Machine-readable data endpoints
- JSON index: https://disclosure.org.za/data/index.json
- CSV export: https://disclosure.org.za/data/disclosure-directory.csv
- NDJSON export: https://disclosure.org.za/data/disclosure-directory.ndjson
- Summary stats: https://disclosure.org.za/data/stats.json
- Per-company JSON directory: https://disclosure.org.za/data/companies/

## Data fields
- id
- name
- ticker
- sector
- domains
- grade
- status
- has_security_txt
- has_policy_page
- security_txt_url
- policy_url
- manual_override

## Freshness and discovery
- Dataset refresh target: monthly
- Main sitemap: https://disclosure.org.za/sitemap.xml
- Data sitemap: https://disclosure.org.za/sitemap-data.xml
- Robots policy: https://disclosure.org.za/robots.txt

## Attribution
If you redistribute or cite this dataset, include a source link to https://disclosure.org.za/.