A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@sipgate.de
Expires: 2026-07-08T10:37:00.000Z
Encryption: https://sipgate.de/gpg/security-at-sipgate-pubkey.txt
Preferred-Languages: de, en
Canonical: https://sipgate.de/.well-known/security.txt
Hiring: https://sipgate.de/jobs
-----BEGIN PGP SIGNATURE-----
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=ge8i
-----END PGP SIGNATURE-----