A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:info@jannesmannes.nl
Expires: 2025-10-29T07:39:13+00:00
Encryption: https://jannesmannes.nl/pgp-key.txt
Preferred-Languages: en, nl
Canonical: https://helderonderwijsadvies.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=jpfo
-----END PGP SIGNATURE-----