A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Generation Global - reporting security vulnerabilities

# Please report any security vulnerabilities to us via the contact method(s) below, only after reading our disclosure policy.
# Please do not include any sensitive information in your initial message, we'll provide a secure communication method in our reply to you.
Contact: helpdesk@generation.global

Preferred-Languages: en, it

Expires: 2040-10-07T07:05:00Z

Canonical: https://generation.global/.well-known/security.txt

Policy: https://generation.global/security-disclosure-policy