A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# E-mail
Contact: mailto:pan@jakubboucek.cz
Contact: mailto:jakub.boucek@protonmail.com

# My private OpenPGP key - be secure, encrypt your message!
Encryption: https://www.jakub-boucek.cz/keys/jakub-boucek-pgp.asc.txt
Encryption: https://keybase.io/jakubboucek/pgp_keys.asc
# tip: use this tool to secure message encrypt: https://keybase.io/encrypt#jakubboucek

# Please speak English ~~ a nebo mi napište Česky
Preferred-Languages: cs, en
Canonical: https://www.jakub-boucek.cz/.well-known/security.txt
Acknowledgements: https://www.jakub-boucek.cz/.well-known/security-acknowledgements.txt
OpenBugBounty: https://openbugbounty.org/bugbounty/JakubBoucek/
-----BEGIN PGP SIGNATURE-----

iHUEAREKAB0WIQTO9r3W4mXrlJ9beRrI8be4WVvGzgUCXZpBuQAKCRDI8be4WVvG
zhyLAQDRtXni7Hc3ep69zDsINMAMGIkmZxv0Xoc742c0crghwwEAjiVlzFgDO9Uu
W3XNXHgziWuWPJB+FNDk/xJB0eeRQbA=
=TbIh
-----END PGP SIGNATURE-----