A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Domeinen van gemeente Tilburg kunnen met een 302 redirect verwijzen naar

# het centrale bestand op https://www.tilburg.nl/.well-known/security.txt

# omdat gemeente Tilburg het centrale meldpunt is voor kwetsbaarheden en incidenten

# voor door gemeente Tilburg beheerde websites.



# Municipally Tilburg domains can redirect to the central file located

# at https://www.tilburg.nl/.well-known/security.txt with a 302 redirect

# because www.tilburg.nl is the central point of contact for vulnerabilities and

# incidents for municipally Tilburg controlled websites.

Expires: 2026-01-31T23:59:00.000Z
Canonical: https://www.tilburg.nl/.well-known/security.txt

Policy: https://www.tilburg.nl/proclaimer/responsible-disclosure/

Contact: mailto:security@tilburg.nl

Encryption: https://www.tilburg.nl/.well-known/pgp.txt

Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
iHUEARYKAB0WIQTXY4VqSSz7C/p5KH4K5WvHB8q3zwUCZzyO6QAKCRAK5WvHB8q3

zzpwAP42F0BGQsY9ChHpArgBXSkhJ6CrlAgEJjKhrgckT555KAEA6NzRs5bMfk+Y

l2Z0hoMi1BBM7jwR/iCwFXMqAk0zkws=

=6eZx
-----END PGP SIGNATURE-----