A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:laurin@laurinr.xyz
Contact: mailto:security@laurinr.xyz
Encryption: https://keys.openpgp.org/vks/v1/by-fingerprint/A8ECC863090318389A41D92081BE495ED4CDEF03
Preferred-Languages: de, en
Canonical: https://laurinr.xyz/.well-known/security.txt


-----BEGIN PGP SIGNATURE-----
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=2TTO
-----END PGP SIGNATURE-----