A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:anton@sijanec.eu
Contact: tel:+38664176345
Contact: mailto:asija3@guest.arnes.si
Expires: 2026-04-20T11:37:00.000Z
Encryption: https://splet.sijanec.eu/pgp-key.txt
Encryption: http://razor.arnes.si/~asija3/pgp-key.txt?f4c3-e3a4-dfb7-2543-97a9-f993-e761-35f4-9802-cd14
Acknowledgments: http://splet.sijanec.eu/hall-of-fame.html
Preferred-Languages: sl, en, sh, hr, de
Canonical: http://splet.sijanec.eu/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=gWzw
-----END PGP SIGNATURE-----