A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@kumanov.com
Expires: 2024-12-31T23:58:00.000Z
Encryption: https://www.kumanov.com/pgp
Preferred-Languages: en,bg
Canonical: https://kumanov.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=gn+k
-----END PGP SIGNATURE-----