A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:joffrey-securitytxt@ne2000.nl
Expires: 2026-03-07T12:30:08Z
Encryption: https://jvwag.nl/gpg-efec5f95.pub.txt
Preferred-Languages: nl, en
Canonical: https://jvwag.nl/.well-known/security.txt
Canonical: https://ne2000.nl/.well-known/security.txt
Canonical: https://vulpine-ict.nl/.well-known/security.txt
Canonical: https://vulpine-ict.net/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEESiUKCST4qXA8BQEZfWZUosdLUoFAmfK5tAACgkQZfWZUosd
LUqjyg//WwZ60NY/LarWJtpibXQxmTFgoEUiMSuXcbon5+3ahgoBHqtMhjXYVkTI
raw+5Yrn6ws4yO1YdsRinWoOx4VBzITiSV5AS7fj4PkeJZZrl2dQzVIMQH1+6vwC
ggJuAUdCXcSK7UgqAxEC+k9wnhu+lwamCzuCPf3w1IeOD7RP6OUHALbjyFEwfQwn
wtcehkIFaQlJK41zlr0EYUcpPPD/kfMEd8ghik+gXwJVHt7du8EDwrKaVE8dO/C5
h9FeTWiVwjus/fB8YiA3rl4uPqBPX4PStFVu4U2McMzCkryni/y0+FoHBMx+DYgU
y0No5qqlSTOqZVNJ0DcRGzhaTn3CkS9tnGFZeXo9QFf+BrpIqapsWO/0McI/3ujx
yhji2R9+Sw5PifAG4Tef9sEPIirugyoQHS975QcHeJo3FeLefZ5TZigogjXNRwns
u3zCArbjH86tHa410l8E7TnsxmthQPa0c7shPr5beGONShoJ5YNrQ94c4zT855+f
CQf4HrHqQuOBtylGfHwsauFOLv5+MzLjgT5TeLMkROM5xRtShqKdX/XT60XxPdvP
lqL7XB/oBf24Zrq+M+sYSCA1vF+fUfkaWCynEu7LkcekwLwJ2llB5io8DeQza7xP
lwkVJJMt9FLvZd3ZLaHMXhFZSjNshJwmYapyHU8rAwvxxN6E2SU=
=MUxV
-----END PGP SIGNATURE-----