A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 # Canonical URI Canonical: https://holmgrown.com/.well-known/security.txt # Our security address Contact: mailto:security@holmgrown.com # Our preferred language Preferred-Languages: en # Our OpenPGP key Encryption: https://holmgrown.com/pgp-key.txt # Our security policy Policy: https://holmgrown.com/security-policy.txt # This file is expected to remain current before Expires: 2025-12-31T23:59:59.000Z -----BEGIN PGP SIGNATURE----- iHUEARYKAB0WIQTzxcZlrRFCsiYVrQt0Z4+VbLg6bAUCaGdaiQAKCRB0Z4+VbLg6 bLVwAP9TCyBNnTrCXuZwRFs77JC3EVgsacEfUQ5R+VvQEzE0UAD/SqmWlYxCTpip 5mcjjO3zQk2Ha/28HNVv0hKF9KmM/ws= =5baN -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2021-01-04 is sorted as securitytxt.
FireBounty © 2015-2025