A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Our canonical URI 

Canonical: https://www.sick.com/.well-known/security.txt



# Our security addresses

Contact: mailto:psirt@sick.de

Contact: https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/



#Our OpenPGP keys

Encryption: https://www.sick.com/.well-known/csaf/openpgp/7F26510FD9D73F4E17DEA0937F833F8E676ED0BA.asc



#Our security acknowledgements page

Acknowledgments: https://www.sick.com/de/en/sick-product-security-incident-response-team/sick-psirt-acknowledgments/w/psirt-acknowledgments/



#Our preferred languages

Preferred-Languages: en, de



#Our security policy

Policy: https://cdn.sick.com/media/content/hc8/h9b/9649321148446.pdf



#Our security advisories

CSAF: https://www.sick.com/.well-known/csaf/provider-metadata.json



Expires: 2025-09-18T00:00:00.000Z