A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# Security.txt voor andante-europa.net
# Conform RFC 9116

Contact: mailto:info@andante-europa.net
Expires: 2026-03-18T06:16:13Z
Canonical: https://andante-europa.net/.well-known/security.txt
Canonical: https://www.andante-europa.net/.well-known/security.txt
Policy: https://andante-europa.net
Encryption: https://andante-europa.net/.well-known/pgp-key.txt
Preferred-Languages: nl, en
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEBU7U1oylZxtQVTrUwJ7+t3r6jOQFAmh55q0ACgkQwJ7+t3r6
jOQotgf+OdtD4cR4tbN+dwmtyEH8nfYvgUvsJfTMs+dZIrCn/MO0S7ER7l7+3lT/
1FUbobav77qmfUhpYABbwbJVnHiJultkXwXPMJOetAjbDem/FFYLV548I3qIFrES
TQD9t41B+s8tt0rYI7T7hB/5P/YoxBwOC0kdnp77DKU28PNKJut/G3uQveQoDQKZ
hgBuxuDfMGMHRpsr1dFHb2b4jvrtiuH/ogJBHW0j9ik/FszJBFiaFfmNpCSN1eEE
rxQndEHcCH1ogvX+/QRISvGiFqjvJdl35R/v0eeLyMx0dNuZDaOgqGxzDMHjjV+X
sx03x/XwtPHUYNk3Hl89pz3qon+XXA==
=3cc5
-----END PGP SIGNATURE-----