A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:dex0012@protonmail.ch
Encryption: https://dex568.com/pgp-key.txt
Canonical: https://dex568.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEECAG4ah7goDkZV71BG7hCbTHAZd4FAl93gHAACgkQG7hCbTHA
Zd7gNQf/YM5TEj3qHuiWhdpshQRo6UHEWubgsVlkRKe+vWOU5nmgnbkg62HMoM2I
X6dVLcDB43rSuZPZwoKC9yI1NqQtrmnrP4LBu8RAVi+IT1hcYY8F7gJxVVAlBu1e
3nYikFbm2YMjsHeHB93FMxeHbsu67Hh3Xew//0U28GHR2Y3+LnJ6HvcgQD7+eZUD
2Skig5LL1UPkVHudUXo7an/QIhiPdkq35Il4PdMPCuDjIxOWEKwbYi6Jp+piGH2K
OLg3Mc2XcL8lvdKZP/qUACBnxCf/SQ7zTyIriIDt/dxt4Ib10mm32KA4gcPcuusx
CdMRlWhdKA3gDnNOtjuHpBc3M2kZOw==
=0F6m
-----END PGP SIGNATURE-----