A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@germancoding.com
Expires: 2024-01-02T22:59:00.000Z
Encryption: https://germancoding.com/.security/security-pgp-key.asc
Encryption: https://germancoding.com/.well-known/openpgpkey/hu/t5s8ztdbon8yzntexy6oz5y48etqsnbb
Preferred-Languages: en, de
-----BEGIN PGP SIGNATURE-----
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=1twG
-----END PGP SIGNATURE-----