A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Spam, Trojans and Phishing is welcome to given security address, may be blocked on "some" domains after receiving ;)
Contact: security@getzner.at

Encryption: https://getzner.net/.well-known/public-key.txt
Preferred-Languages: en, de
Canonical: https://getzner.net/.well-known/security.txt

Expires: 01.02.2027 00:00:01 +0100

-----BEGIN PGP SIGNATURE-----
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=5aN/
-----END PGP SIGNATURE-----