A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256



Hash: SHA256



Contact: mailto:me@jfhr.de

Encryption: https://jfhr.de/pgp-key.asc

Canonical: https://jfhr.de/.well-known/security.txt

Preferred-Languages: en, de

-----BEGIN PGP SIGNATURE-----



iQIzBAEBCAAdFiEEgaMiKIh/GxyWP7ONYZvEhQpuAesFAmIim24ACgkQYZvEhQpu

Aev0yg/+P7iT4c9dgZPjEjymdQ//dxkrCSc7BmX47HZAx37BqhPF/TQB/+PAv2OW

HIIX9dkb86far08fA7X2zKpxf0nAF7AkGhCT9xC7z/8sYspSZhmr/cRc3k9gNwYB

p0e8zfb4QgODOflfjBAHlYkzusv+1cW6Yy0WjkaaNVNFXP91EbRpoa4aBv8ebJBJ

8OSQgFEuv3PdifdD3kl+6fh3Jcih6ssMCQ3iJkpwypgx55Ut4yOwCv5RGC5h9Hdh

pghYjXzM7W91WDetClNGId76L/mhOYxjPOol/uflMql1452a+8+LPVhECOUGaWQW

fwucBGFBdO1fcGzy8ZLegJw+xmr6OxvE7ukUrBtyU/ZeSU6+yNFnmlgNR1uRyqY6

Pmw0xnqRxgRGMU48c+uQiaNG/8LtV/9qvgfHasWyrG94MyE3gDU8xVkFCNCFQGtO

2aydPpi17S/rB3asILZr7E0QTlJyAd6Zlblc7yNbbBHweY+KHBSeQ2djUUAMG0m+

s+Rx5ZgVqBWI+d0HxKbSU2YPvFGy+fMZA5WGjAWAUqhfTIFtkjuNmWvduHsD+6KF

QI2Uu8DRLO9WXr++aJWeJRRgegf0G0r8o6vWO3QOzNAnEbrancpMub0z+uxHda3V

KYMo68yefK76VVMcNP8QGMYhiqk6xqcLTnYwBtPEGtX1rcFiU1k=

=7wIy

-----END PGP SIGNATURE-----