A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

#
# Cals College RFC 9116 security.txt
#
# 

# If you would like to report a security issue please first read our
# responsible disclosure policy:
Policy: https://calsnieuwegein.nl/security-kwetsbaarheid-melden/
Policy: https://calsijsselstein.nl/security-kwetsbaarheid-melden/

# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: https://calsijsselstein.nl/security-kwetsbaarheid-melden/
Contact: https://calsnieuwegein.nl/security-kwetsbaarheid-melden/
Contact: informatiemanager@hijnscholengroep.nl

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: nl, en

# If you think you'd like to join our team, please visit our job vacancy page:
Hiring: https://werkenbij.hijnscholengroep.nl/
 
-----BEGIN PGP SIGNATURE-----
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=aO1V
-----END PGP SIGNATURE-----