Update security.txt for end date and add some more fields

Fix the expire date.
Point users to a wiki page to hopefully cut down on begg bounties
Note that we do NOT have a bug bounty program.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>

roles/security.txt/files/security.txt

@@ -1,2 +1,5 @@
+Canonical: https://admin.fedoraproject.org/.well-known/security.txt
 Contact: mailto:infra-security@fedoraproject.org
-Expires: 2025-12-31T21:01:00.000Z
+Expires: 2027-02-10T21:01:00.000Z
+Bug-Bounty: False
+Policy: https://fedoraproject.org/wiki/Infrastructure-security-reports