CISA’s VDP platform annual report, explained

The Cybersecurity and Infrastructure Security Agency (CISA) has partnered with Bugcrowd and EnDyna to operate a Vulnerability Disclosure Program (VDP) Platform, which helps Federal Civilian Executive Branch (FCEB) agencies identify and address security vulnerabilities in their infrastructure. The platform's usage grew dramatically in 2023, with over 7,000 vulnerabilities reported across 50+ federal agencies—a 132% increase from 2022. CISA released an annual report analyzing trends and impact across participating agencies. Key takeaways include expanded platform adoption, increased vulnerability detection, accelerated remediation efforts, demonstrated cost savings, growing global research community, and elevating security maturity. The VDP Platform's success shows the potential of crowdsourced security initiatives in strengthening federal cybersecurity.