A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

#
# Security issues may be reported to us using details contained below.
# We take our security seriously and while we don't require any identifying
# information from the disclosing party, we do ask that you provide us
# with as much information regarding the security issue as you can so that
# we might address the issue as quickly as possible.
#
Contact: https://www.adam.co.za/security/
#
Acknowledgements: https://www.adam.co.za/security/security-acknowledgements/
#
Preferred-Languages: en
#