A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# Canonical URL Canonical: https://www.arnove.net/.well-known/security.txt # Languages Preferred-Languages: fr, en # Security contact address Contact: https://www.arnove.net/contact/ # OpenPGP key Encryption: https://www.arnove.net/security/pgp-key.txt # Security policy Policy: https://www.arnove.net/security/policy.html # Security acknowledgments Acknowledgments: https://www.arnove.net/security/ack.html
This policy crawled by Onyphe on the 2021-04-06 is sorted as securitytxt.
FireBounty © 2015-2024