A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

Canonical: https://maxdehaas.com/.well-known/security.txt \r\n
Canonical: https://www.maxdehaas.com/.well-known/security.txt \r\n

Expires: 2024-10-29 23:00:00.000 \r\n

# If you would like to report a security issue please first read SIDN's \r\n
# responsible disclosure policy: \r\n
Policy: https://www.sidn.nl/en/cybersecurity/reporting-a-security-breach \r\n
Policy: https://www.sidn.nl/cybersecurity/beveiligingslek-melden \r\n

# Please always try to contact us through our responsible disclosure form \r\n
# to speed up things. Should that not be an option, then in order of \r\n
# preference the ways to contact us are: \r\n
Contact: https://www.maxdehaas.com/reporting-a-security-breach \r\n
Contact: tel:+31622567724 \r\n
Canonical: https://maxdehaas.com/.well-known/security.txt \r\n

# We can offer you a swift and proper response in the following languages: \r\n
Preferred-Languages: nl, en \r\n