A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

Contact: mailto:support@timeatlas.com



# Please do not think about contacting me for a *beg bounty*. 

#

# Like many webmasters, I run this site for free and rely on community goodwill. But we tend to get a lot of

# ridonkulous emails.



# Now, if you found an *actual* security vulnerability then contact me and tell me what it is. 

# Please use "FOR JESSE" in the subject line.



# But if you just ran some automated tooling, found something trivial, and reached out with the expectation

# of cashing in, you wasted your time. 



# And if you are not familiar with "beg bounties", please read: 

# https://www.troyhunt.com/beg-bounties/

# https://news.sophos.com/en-us/2021/02/08/have-a-domain-name-beg-bounty-hunters-may-be-on-their-way/
# Generated by Security.txt Manager: https://wordpress.org/plugins/security-txt-manager