A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2026-01-10T08:20:39+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2026-06-09T08:20:39+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_sueden.co.jp_20260110.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_sueden.co.jp_20260110.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_sueden.co.jp_20260110.txt
Preferred-Languages: ja, en, zh
Canonical: https://sueden.co.jp/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=T6iK
-----END PGP SIGNATURE-----