When security risks in web services are discovered by independent security researchers, this file defines the channels to disclose them properly.
The security.txt file is a file created to allow security researchers to easily report vulnerabilities. This file intended to be read by humans wishing to contact a website's owner about security issues. However, depending on the content of the file, an attacker might discover hidden directories and files.
Ensure you have nothing sensitive exposed within Security.txt file.