Bug hunters who want to help the US federal government secure their online assets can now source all the relevant information from a vulnerability disclosure policy (VDP) platform offered by the Cybersecurity and Infrastructure Security Agency. The platform is run by BugCrowd, a bug bounty and vulnerability disclosure company, and EnDyna, a government contractor that provides science and technology-based solutions to several US federal agencies. At the moment, this newly established VDP platform collects eleven vulnerability disclosure programs, published by the: Federal Communications Commission (FCC) and Department of Homeland Security.
Source: https://www.helpnetsecurity.com/2021/08/02/us-federal-vulnerability-disclosure/