A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:semnos.link+security.txt@gmail.com Expires: 2027-06-05T00:00:00.000Z Encryption: https://semnos.link/.well-known/gpg-key.txt Encryption: https://semnos.link/gpg-key.txt Preferred-Languages: en Canonical: https://semnos.link/.well-known/security.txt Canonical: https://semnos.link/security.txt -----BEGIN PGP SIGNATURE----- iQGzBAEBCAAdFiEEWIw2AxI7H6LrUdoIgHxtgiQtKKsFAmZgy/IACgkQgHxtgiQt KKtRBgwAhZAASgXDVg+Og6dxti2WxktkW1ciYrO0pGVx2P+Ja/Ldq0ncfFW7FXoL uwCXfie6C8lsFql5UitIWL5b//YiJNB//0fN56v/jHfTyzbs1uhiEIvpsh4L/xKP YDJLU5P8aKx781kxcBAh8sE+vS4eFwZ1q6akbQhvJZMUCM4Vdd2nxjdOl8a6Bhz1 AQip6hIIjTPPLW1lwhtciyzBxWMjplaB51mNDqLQilDaWwpN2xQ9xTWuecFVndHp hrPreZu8iyRB7Ulaf36lGDWzHohON4BZqdtVVywhIiMhmlsUzqEtqRwviHVrtD7e CBBQ4FZlpRtonFUrCxO7mviX6OZO6hFo17kz+nsQczivJeI1Bbpi+QlaRaBct+3u /0nm0mw1WnlwiQgj1RWCxifEpll+VooHuwTsIQ5iCQz/Jz2LKVXgzqo4Kwo4Fk4p 6cNFb8I0muN1v083wXtHg3ADTU5MdooB1Yh0fazlzLcaLO6QS1t2uK6M/HNr+dB/ q9Ch8wnZ =UEFY -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2022-01-02 is sorted as securitytxt.
FireBounty © 2015-2024