A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:admin@jpcdi.com
Encryption: https://jpcdi.com/.well-known/pubkey.asc
Preferred-Languages: en
Canonical: https://jpcdi.com/.well-known/security.txt

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEbNDwJOfplV8kfmnSUbAX2h5FheoFAl5QOygACgkQUbAX2h5F
heo1mhAAlDjNTziRlGBB3XO2zG8Vn0Ior+O/JJX6JaeWIJSvANdPWUrXwjPx0hOY
qjb8bbMumM7Wh1QK14KNahxzgabqTrlCuryv0B0vljJonbwJccwlo5tbuc2peKmJ
cATRyMgTevf6l9aKB8GJUSeAhfuwoXRMziE5HTyUeW3ASXnkRMbzPebu1P13D7UX
6iOmGYGNpMNEEGR72HkIvfFvamPdVzhA+TZd7VxoEPCYd7N73VFg5biXP6gLBwbf
YbykNmjKBn0NncXWO6l4kWlEah/u/CJ6BFwxlNZbCV+0NgYb5ni301jQ2BP1yJoY
zWOf1Gf9rKGqmQJnhtJloYG24dY/dE/rFV2Nfk7LmUdAjyaGHsP97H0MzIQRvMye
ZSqIXR3d7U/pU9DzQhgC5cIA0dMNCdghvni72s+dgad5BC5vQXyIndioReRwQtbQ
bjw1GUGk6drqLtPVKYRM+8YQAHitSVK+3ei0OVX5ZlOXtze4IxiiujPtiFEAbpwa
7egeITK3Gzb5CR7WSsIJwvXoLJVR0bFB/WIsOISQhaC44JTGcYsw6gjg+YMD4Mab
iPssGNlnSC7m/wxIbQibsngHlOqssHADbJiiw+qwYN0aeBhyHpYVIuDNBVTf2zOK
aTy6PdWypFswADIZdv9o/D9dqBr2RkbGfqotL5jX6H82uJMJCtY=
=ZdJ1
-----END PGP SIGNATURE-----