A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2025-03-10T08:20:40+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2025-08-07T08:20:40+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_sueden.co.jp_20250310.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_sueden.co.jp_20250310.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_sueden.co.jp_20250310.txt
Preferred-Languages: ja, en, zh
Canonical: https://sueden.co.jp/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=QdBn
-----END PGP SIGNATURE-----