A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: https://klyp.de/.well-known/security.txt
Contact: mailto:security@isaeus.nl
Preferred-Languages: en,nl
Encryption: https://isaeus.nl/pgp-key.txt
Expires: 2026-10-03T03:38:04Z

-----BEGIN PGP SIGNATURE-----
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=I+9R
-----END PGP SIGNATURE-----