A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: https://www.afana.com/contact/default
Contact: tel:+17407438235?
Expires: 2027-03-18T01:12:00.000Z
Encryption: https://www.afana.com/.well-known/pgp-key.txt
Preferred-Languages: en, es, it, fr
Canonical: https://www.afana.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=dxlW
-----END PGP SIGNATURE-----