A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:buerli@thomasbuer.li Expires: 2022-06-16T22:00:00.000Z Encryption: https://thomasbuer.li/.well-known/gpg-key.txt Preferred-Languages: en, de Canonical: https://thomasbuer.li/.well-known/security.txt -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE5PjC/4ziuaXo/oaozGT6GvY2CkIFAmDLDrkACgkQzGT6GvY2 CkJFhQ/+N8YwyYDvB6CuMB7bsnozHnZzXvkKiAMZf020L3GtuOdLqmYSZJtWDrk4 MAJ6njqIxHt+rKQEO0e/iPeXVmhkKN+eUzrUW/s+F/L3h5Go0IYoFG0fdLfKPdza gZcnwMG6vz9LBHqy5f4glFvi9zQyAP1d2QP7KpBWXEAB82Z7fw6818ZcY386pXZT ITfP+G/jpbwuGXK8nFP8caIeDS18GSkloFkH2kyACwZCNctw5L3TB/Q9KtewC6YX scpe8G+bFzGdVswzlermDA4gDDlh59gAnKdOT4rd6fLH6KcHTyWgx5V7XXnSLEez c3VJ+ZhYRh5vcB3Xn43GSd3qgU6k0w2QjkVJLp+YLT8p0Fqhn90xxQNq3hwDGEbN KUv9IN2rkZ5ff6QpcNJCX53k68yoQxv2VXAYRnLIxODpmYBsoPNgs5VSSRy2ywou VRvb/C+8epwjmwbyk3Y5RgEr28qWSKYHiO3MI6W63BXjrQh0NJKQlaSO20kZvOzJ bnieRGOUkZ3AAA7sFKJOkxo3gsf3s2135CvhZ04oWbisXnqFosQ5/oSlk6oz/dj5 0P7Bu2ptAolMa6p5ygEq2IbijLNxws+mYX52kNbUTzPtl3O3yVVQnszcsEzz+V6Z 16CNEtz60sY+g5dNJNUKhx9e+5B0oAJms5356/qLaHXKiuKO7V0= =bsCX -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2021-11-03 is sorted as securitytxt.
FireBounty © 2015-2024