A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@zudrell.eu
Expires: 2022-06-24T19:00:00.000Z
Encryption: https://zudrell.eu/security-at-zudrell-pub.asc
Preferred-Languages: en, de
-----BEGIN PGP SIGNATURE-----
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=9voU
-----END PGP SIGNATURE-----