A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: rsa4096



#

# ThaGhostNL security.txt

#

# PLEASE BE ADVISED:

# Do *not* use this security.txt unmodified on your own website!

# 

Canonical: https://www.thaghost.nl/.well-known/security.txt

Canonical: https://thaghost.nl/.well-known/security.txt



Expires: 2025-10-20T16:06:41+00:00



# If you would like to report a security issue please first read our

# Terms of usage (AV) / Security Policy (SP):

Policy: https://www.thaghost.nl/av

Policy: https://www.thaghost.nl/av/security-policy

Policy: https://www.thaghost.nl/av/beveiligingslek-melden



# Please always try to contact us through our online form to speed up things.

Contact: https://www.thaghost.nl/av/beveiligingslek-melden



# This is the PGP public key that we use to sign our security.txt.

# Do *not* use it to send encrypted mails to us.

Encryption: dns:540C25F1C3B01738CBE05E459C93A77F2FD2382A._openpgpkey.sidnlabs.nl.



# We can offer a proper response in the following languages:

Preferred-Languages: nl, en



#

# Thank you!

#

Signature: https://thaghost.nl/.well-known/security.txt.sig