A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# Canonical URI
Canonical: https://www.minebench.de/.well-known/security.txt
# Contact for security related issues
Contact: mailto:max@themoep.de
# OpenPGP key
Encryption: https://themoep.de/7A2E6B108BA3486BAD2DA9FACD3E65A8A356C4D4.asc
Encryption: openpgp4fpr:7A2E6B108BA3486BAD2DA9FACD3E65A8A356C4D4

Preferred-Languages: de, en

Expires: 2027-06-10T00:00:00.000Z
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEJePbAclub5V88YwjQOIyHnFzjrAFAmgKIqEACgkQQOIyHnFz
jrAtBwf/UNjpzeEC2Wt3TP3o53NG8eCHru7u6cI/rTzNwaz2wIBA4EFz0TNm7TU+
KGQGwB96w2E01Qi/Aiy71PR4siOOMhLD2GQVk0qkw/R2wnW6c4VmPEADHfDfosTc
/jcWquDr0ieZa5RSfQ6kDnqBBYayAEtk/WlLQNuTf96vvqCBtNAzAWz/v8f15MMk
Iwhg3igQbOSMtumL3UPW+c7bdjuS5LgF7P+GiQpaIjv1qPRp8/5oWPLZpJGq5dnG
3pJAi8NknXiB/HrKLihDbBhDcxZxeX9KoFxkQrGSPZvx5eapqAlRnjXylyzL+Dp0
7dCweWAlnLmZg54i0tMp1CGZSQBbdQ==
=glCz
-----END PGP SIGNATURE-----