A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Last-Updated: 2022-04-28T01:47:49.666Z

#

# This file is served up as a default file for my personal projects.

#

# There is no bounty offered or formal disclosure program, but if you spot

# something I'll absolutely do my best to get it resolved. Requests for

# payment will be ignored outright.

#

# If you would like a public acknowledgment, say so and I'll figure it out.

#

# Reports about SPF records and _dmarc records are useless, please do

# something productive with your life.



# Contact Information

Contact: mailto:security@razx.com



# Contact Information w/PGP

Contact: mailto:thedaveCA@protonmail.com

Encryption: https://cdn.thedave.me/resources/pgp-key_thedaveca_protonmail.com.txt



# Note to self: Update as needed

Expires: 2099-12-31T23:58:00.666Z



# I'll try to translate other languages

Preferred-Languages: en