A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@tessian.com
Preferred-Languages: en
Hiring: https://jobs.lever.co/tessian
Expires: Fri, 19 May 2023 12:15:00 +0100

-----BEGIN PGP SIGNATURE-----
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=8I+s
-----END PGP SIGNATURE-----