A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# If you would like to report a security issue you may report it to us 

# Location of GPG key
Encryption: https://seegras.discordia.ch/About/PGP.php

# Canonical URI
Canonical: https://discordia.ch/.well-known/security.txt

# Our security address
Contact: mailto:security@discordia.ch

# Our OpenPGP key
Encryption: https://seegras.discordia.ch/About/PGP.php

# Language
Preferred-Languages: en, de

Expires: 2028-12-31T23:23:23z
-----BEGIN PGP SIGNATURE-----
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=F+ps
-----END PGP SIGNATURE-----