A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@nodespace.net
Expires: 2023-01-01T04:59:00.000Z
Encryption: https://nodespace.net/pgp-key.txt
Preferred-Languages: en
Canonical: https://nodespace.net/.well-known/security.txt
Canonical: https://www.nodespace.net/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=pKK/
-----END PGP SIGNATURE-----