A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@fonkelwijs.nl
Preferred-Languages: en
Canonical: https://fonkelwijs.nl/.well-known/security.txt
Expires: 2024-05-01T22:00:01+00:00
-----BEGIN PGP SIGNATURE-----
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=H7mh
-----END PGP SIGNATURE-----