A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2025-03-10T08:20:40+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2025-08-07T08:20:40+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_sayama-kucho.com_20250310.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_sayama-kucho.com_20250310.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_sayama-kucho.com_20250310.txt
Preferred-Languages: ja, en, zh
Canonical: https://sayama-kucho.com/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=2pWF
-----END PGP SIGNATURE-----