A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:info@simaogv.net
Contact: mailto:info@superboring.dev
Encryption: https://keybase.io/superboringdev/pgp_keys.asc
Preferred-Languages: en, de
Canonical: https://superboring.dev/.well-known/security.txt

-----BEGIN PGP SIGNATURE-----
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=A0bT
-----END PGP SIGNATURE-----