A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: contact@cubxity.dev
Encryption: https://cubxity.dev/pgp-key.txt
Preferred-Languages: en
Canonical: https://cubxity.dev/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEq17Qar1DH0S9P6C7Ht3mxaZEo20FAl7yFK8ACgkQHt3mxaZE
o22c9w//XAw3XLMnv+2ynosHeOFGXlrx5kLBCdV8ybL0b7rq4ijCKK9QensaCsR1
FvUJsiW9y6Enh2ltauzFaJXDv+5ZkleIZ5gKYidrZV8UIzh0jP+oftOpPI/aHQoI
LTGhoRIIDDVgRTyIx50ywS93pBWln/jKsMSmvrLd1feEYHKu45n4aEuI+AqYqpTS
4599Vne9VI46PqAPv+pIbybZoNN+IDEgdhBWVdI37qWpllc8KAI3hqmy51Cor54R
al67ii/dr6/eBNOsvA0yWt9An8stdb0EX5zRc+vnjNjYqhnejGGxNuu7UQsPi7tT
GqIB+lr1YA9hiEw1kxbRMM0/LNKNVqT1bKvmJ5+iF9iSpk0EcDqhyFNADo9+fJxg
F+DBBdGKrppkLRrvR2CKqRLCv16RkOvqCKPMbBQDXpgGiAerfha365tRVhsGSNNP
bwX7yA94d6pn2DOqA1Fo3bg0r2KHYxJNgh43i3jammPZyS4Qoydhsme0RaU+R8m0
eDmtIqXIZYwH6Fp00vrz4LgqNBVu9TYH4gDwoXDuNwFAB3u0s8mJ+4AtIK0nUWql
LbDhP4uqF0EUX5OEkKL89AyWI4ue0TCVLI20baEAZFRon8r0PSLAqrrMe29oDEOe
QVJQzm9EY9WKz2m8rDX5erBq5434jZObF8Ff7iZKQ1uHVAenwsM=
=ezhI
-----END PGP SIGNATURE-----