A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@cloudlinux.com
Expires: 2025-12-05T23:00:00.000Z
Canonical: https://www.cloudlinux.com/.well-known/security.txt
Encryption: https://keys.openpgp.org/search?q=security%40cloudlinux.com
Preferred-Languages: en
Policy: https://www.cloudlinux.com/vulnerability-reporting/
Hiring: https://www.cloudlinux.com/about-us-company-jobs/
-----BEGIN PGP SIGNATURE-----

iQJMBAEBCAA2FiEE6I9QVj3FVwCfle+xzfzpp0sTeK8FAmdRooEYHHNlY3VyaXR5
QGNsb3VkbGludXguY29tAAoJEM386adLE3ivtF4P/j8iPz0qw6wJYRHkemO+GcBb
K8C72E9OGheZK50OGcd2wxHEFkbO0mIxRNEM0t/FbIjifT5/QkxWoofcmfKWnxWJ
E74KEMbDNjIfdADwkVSS4r3BLHdaQbnqR33jfOjqSsjONcwcLWt7D5NKacLCVHyd
ryZHiAIF1pZsPtfdSI4tUq4ZMZcUlGt641ZXOygzngh/mrazJoEDduTHYID6m+FE
lviMHyB1duilxgV+BS5Jbo9f68+CQbiWAo8fAgEhHN49gzFA83/VRmkwTOkXITh6
cuVm2iBFXFSn+BHEiGsXgQnQM+LMjVZLHbtjTAe7zNTBzo9h5YChhgoBy1RVn9+4
5VpIp4Aic2Was/nAP+upmVreKgSuSYTqr38CARBTTu7d7UBoAkLYe71tUbkTsmuq
qi6qDwBR9guw7xRO39SHuStC/IhFDr2lJ5JfhI19VINj62A9OS1WTyYl1wzFVhtX
6t5xCKCCYlYdMnsva6hUve/4raaQGkKLeBlOyLOXgc0MoBP9YTJN4aMFbtQhudFG
6WQWNecFdHEbTyE8UbqTV96ZDpcVq6VrIQkoFTChmxNJyBcETTgBnDA1eDzuLM+9
8vmVsW3zvYRyvVFeY39nCBsuX4qEo6V2eXYO6DLR6RHCJiKojeoffy4AI4jQ+TcE
sqi+uwIOgngtzVFAX5eU
=e7MB
-----END PGP SIGNATURE-----