A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

#If you would like to report a security issue
#you may use this contact.

Canonical: https://ternac.net/.well-known/security.txt
Contact: mailto:security@ternac.net
Encryption: https://ternac.net/.well-known/pgp-key.txt
Expires: 2025-12-31T23:59:59+01:00
Preferred-Languages: sk, cz, en, de
-----BEGIN PGP SIGNATURE-----

iHUEAREIAB0WIQQD/Ec4zijicm+fjZvf6u7E3Oly2wUCZ5TE6gAKCRDf6u7E3Oly
2w/RAP46VBx3ICAjiWblTBzU5ygyfKmT/20MV4zfkOg19wOl6gEAgbdgD0h9dhXb
vAved5ETMWMhUz7kZqDU+urKl551/fI=
=bsak
-----END PGP SIGNATURE-----