A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: tpzker@thepuzzlemaker.info
Encryption: https://thepuzzlemaker.info/public.asc
Preferred-Languages: en
Canonical: https://teamisotope.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=A3/n
-----END PGP SIGNATURE-----