A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# This is a hobbyist website. I'm surprised if anyone ever visits this page. Well done for finding it. This will probably never be updated after the initial writing. So just use common sense if you actually need to contact me.

# The page will contain an email address in the Terms of Service text. Use that for security reports too.
Contact: https://www.ljoonal.xyz/tos

# The gpg pubkey.
Encryption: https://www.ljoonal.xyz/static/pubkey.asc

# Matching the GPG key expiry.
Expires: 2024-06-07

# English is preferred, but Finnish also will work.
Preferred-Languages: en, fi

Canonical: https://www.ljoonal.xyz/static/security.txt
-----BEGIN PGP SIGNATURE-----
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=Sz5k
-----END PGP SIGNATURE-----