A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# Our mailaddress for security issues Contact: security@postma.xyz # Our pgp key for encypting and signing messages. PGP-key: http://hosting.d9ping.nl/mail/security.asc # Signature of this security.txt file. Signature: https://postma.xyz/.well-known/security.txt.sig # Our responsible disclosure policy Policy: http://hosting.d9ping.nl/responsibledisclosure
This policy crawled by Onyphe on the 2022-01-03 is sorted as securitytxt.
FireBounty © 2015-2024