Robots.txt file with potentially sensitive content.

## Summary: Invicti detected a Robots.txt file with potentially sensitive content. ##Description: It must be in the topmost directory of your site; if you place it in a subdirectory, search engines will simply ignore it. Despite its great power, robots.txt is often a relatively simple document, and a basic robots.txt file can be created in a matter of seconds using an editor like Notepad. There are other ways to achieve some of the same goals that robots.txt is usually used for. Individual pages can include a robots meta tag within the page code itself. You can also use the X-Robots-Tag HTTP header to influence how (and whether) content is shown in search results. ## Platform(s) Affected: website ## Steps To Reproduce: If a mistake in robots.txt is having unwanted effects on your website’s search appearance, the most important first step is to correct robots.txt and verify that the new rules have the desired effect. 1. Submit an updated sitemap and request a re-crawl of any pages that have been inappropriately delisted. 2. Unfortunately, you are at the whim of Googlebot – there’s no guarantee as to how long it might take for any missing pages to reappear in the Google search index. 3.All you can do is take the correct action to minimize that time as much as possible and keep checking until the fixed robots.txt is implemented by Googlebot. ## Supporting Material/References: *https://www.searchenginejournal.com/common-robots-txt-issues/437484/#close ## Impact Attackers can use your website’s robots.txt file to gain a foothold in your environment and lead to further compromise. Learn how to mitigate your risks.