A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# This website is a SaaS application managed by DreamApply : https://dreamapply.com
# If you would like to report a security issue, you may report it at the contact e-mail below.

Contact: mailto:security@dreamapply.com
Encryption: https://dreamapply.com/dreamapply-secops.asc
Preferred-Languages: en, et, ru, fr, ka
Canonical: https://dreamapply.com/security.txt
-----BEGIN PGP SIGNATURE-----

iLUEARMKAB0WIQSZ/XLFmVn+oif3ovxBFud7OGjbqwUCXdvcJQAKCRBBFud7OGjb
q6RqAf9iPlqRdeeH3r6XBKZTz+srTsvVlQk7z08ymGSsbrnJHzT+beG2QfVcm1ME
ZIgfVlr6HYW5+dY2TIGCdFhjhTpXAgCm4Jqmv6M9Ju9iQ+jElwFZl5QxNT/0u6rR
0+PuZHpq9cuNZwPq2WcnUd4lnlNmWbcwxKj7BDqgkBbh9D/QtPun
=Jd+A
-----END PGP SIGNATURE-----