A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:security-contact@arin.net Expires: 2025-06-28T04:00:00.000Z Preferred-Languages: en Canonical: https://www.arin.net/.well-known/security.txt Policy: https://www.arin.net/reference/materials/security/ Encryption: dns:80a13813c45dc961ba26af073032b9a8b5dcde3f8828a4717824df1f._openpgpkey.arin.net?type=OPENPGPKEY -----BEGIN PGP SIGNATURE----- iQJOBAEBCAA4FiEE530Qko4561tabK3Seh0GwxAQFvkFAmZX5QsaHHNlY3VyaXR5 LWNvbnRhY3RAYXJpbi5uZXQACgkQeh0GwxAQFvkfMRAAoYq7A2znQhomBSmGZWKD i/EoRJru3CuOq2sRVizfpZrB/hBZtXLM2N/am0g1OKSQTM1kSeg/nE4dEFwAQaT3 VuBPmtIi1Qol1tPp42P4rT5YJDKaI9tpI9EVEk0pvdkEBUKpUTUGfGtEKZXi1w9K qe6qGkZByO6qcq94AfaGSKOOL3AR+1G0ENA7/QIfOCI58WNdT9Q4UTsoZgNz0LGI wXJk+sDuxo/WD2mGdYyXc4l0A/RdeQIn57UiyGcF/gK6cv+d+s2iGGi+VEUe099N UBEpdhDmg1Clm5l4EZ9AplxWmY448nKmblUSzUf02Q5E12YtKXxcGGZugqMCVCWQ sWzPM3qJ4VNY+fyIouxM2gf6mFx8/7e5IXMQTOC3KOJoPIqUbH8/X9sRqk3QR/En D7TJJXrIPnCQYZQ2n+v1kiTrhtmw5qOaP2sXzfEaLldQwTdEWWy64bKMWcK2EDtp yWzFCcRRWbaSrCQFMTMZs+T+Ol0EOfHuEjMsTODbDfI1YvX4PQrSYOBY0Ji9clMd 9mHVk1/E4XhzOMSm8kT9yi2MCOWYqkvvhvly5WD+brdA9Gra1JG4Y69V9aTOkj0P UvbHPHL9wP1WcqrrhkWYo5RL2NedT6MxgBfef/nTv/RvMlF1x/bu8NUO3K5sjsjs jS4q8po57h4+1UuPVQXs7IA= =0hiO -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2021-11-04 is sorted as securitytxt.
FireBounty © 2015-2024