A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:josia@jrpie.de
Expires: 2024-12-31T23:00:00.000Z
Encryption: openpgp4fpr:247D532A6F6531EB27343A80E2A324C7AC353142
Preferred-Languages: en,de
Canonical: https://jrpie.de/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQJDBAEBCAAtFiEEEoVGZR6kna9ZUeP35wtXHWaYai0FAmTWkG0PHGpvc2lhQGpy
cGllLmRlAAoJEOcLVx1mmGotNjYQAIdDpqJF+nqnWrOzgMZyIeYodlvyZ5SAeAun
OHeikmoYsGBaU/7YaElwIlwFz2/5N8FAtOpENlEM71bWzlse6vIWaWH/138A/9OC
Wvg4cckHyNtst7Ncw7O9x2AvmmU2vhALzJsKiu7DHFNYcF3RtMv8MiwmYgvb323+
vcum9k+MGIn8C7/AUyU1xBz0NgJwf+JxmA8w0QFkcaBdoylRk0zBSj2Z5f1inTZ3
I/5CT9ZjOBpmAnf7A08VHlxRX0ZbMoWKgBSelvq2sB9DEXNHjj0JeGhyJNHJJtJX
QtQLyhCp4WkRxyFvXTdOds5vB1m92toAw5z+m+DEXHk0qVX+ODi7osjpSHxSt9us
8N0/AcpEthGrJBZJJGg3qgUENJATtvu06K/0LGRf+paZ0Wj/7vSLnCykFQF2V87A
i8D4GgEXz/2BUNLKwKHAcnqKYbTMGoatxcNEYHs2tbsE8pwNCWRhJYzyOY0pExOG
e0pqwfWRKhYszxwmazE3BDsK1UupnzudvtDHZI8Fu5j2IPthVKMFcmUo9F929qX4
ulQXphpHHXwhonhxgbFzVVKqe6ztLX9eGZ28AhfqPVTIddbi4/qFX6j1yhhoRRCy
s4eJITG9oEST7u7BZN1sqiEXNAfyWJk9Lly1OQSYzGNSDuUkJbvmhRbIS11wXXON
0LIQVTSy
=lACU
-----END PGP SIGNATURE-----