The average iPhone app has just under 50,000 lines of code. Testing at these volumes, while factoring in pressure to launch on time, makes it nearly impossible to surface all potential vulnerabilities pre-production. Organizations need a way to identify vulnerabilities discovered outside the typical software development lifecycle, without compromising on cost, or coverage.

Vulnerability Disclosure Programs (VDPs) are quickly becoming a baseline security best practice for organizations of all sizes. You can learn more about VDPs in Bugcrowd’s new Ultimate Guide to Vulnerability Disclosure, but this infographic covers some basic questions you might have.