A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# security.txt file (RFC 9116) for websites managed by ImmaeEu SARL.

Canonical: https://www.immae.eu/.well-known/security.txt

Contact: mailto:security@immae.eu
Contact: https://www.immae.eu/contacts_fr.html
Contact: https://www.immae.eu/contacts_en.html

Encryption: https://www.immae.eu/pgp-key.asc

Preferred-Languages: fr,en

Expires: 2028-01-01T00:00:00Z

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE+CgG/aG/W5obMBTnyfztbKa3lFQFAmkccNMACgkQyfztbKa3
lFT8pw/9FhtNEnG377VwHuLErVmsyNU4HL2hEEq71+/AUCh7ho6ZnQeFgh1DUXaV
lJnc0vPA+bNuirQwM6+Qytrd1Fq2K4tqKqw6pws1jDD76+5bL2Qu9HiTqJEhVkFB
cdAi3Q295va0TLc5w/I8LHYLSQRauKV76jPGkcPDLpJVvPo1mxDq11l8caLg9pZO
H1foexm3slPwDBa66AGvFSaa6zJPusvWg7fZF6/vqo9jbPxxxb5lGcTGkbJS3Nt6
TIw5Kr/tpuU+O07m04dc98Q5GkQLghZmlUA5AcgT67LeeXDcXpmALtK4P17fVwAl
CCJJh2rw3AhD0yCAKJBVBv44KAW8TNmIn0D0wyHQhW9E3+vVtrkfsVimUODwCJ30
nT4UzvJOSra3nZTSbmx+2Ne87VAdzdkHPNZkl/MoSbq+R7jz4/P6Gn9HeRBrbtg/
AkLR/G+Uq/pelmUz+Hb6MRioctYNo7ynyh+5wYNDMttDVvQKXKbPHoLGdIoJkolA
Yuz2N5a78/Y6z7qDeAlxSxFha/JfdVwFCbEtAK29S0Arlpq1aAtoVtWUD9VQzNmA
+3COY/oM8R7DxeZy9oO/2W7pCaZUdN3EoYHLX763Cu/dgwjpuxiz2FcHjFG6i9gc
vBc69oAM6DUVnr1E1vrM2pgB+bmn+bw9gqEojyWPUQoXUysSSa0=
=/0IW
-----END PGP SIGNATURE-----