A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

#
# Good Shepherd Toys - RFC 9116 security.txt
#

# Canonical URLs
Canonical: https://proteamail.com/.well-known/security.txt
Canonical: https://www.proteamail.com/.well-known/security.txt

# Our security address
Contact: mailto:security@proteamail.com

# Our OpenPGP key
Encryption: mailto:security@proteamail.com
Encryption: dns:5d2d3ceb7abe552344276d47d36a8175b7aeb250a9bf0bf00e850cd2._openpgpkey.proteamail.com?type=OPENPGPKEY

# Our security policy
Policy: https://proteamail.com/security-policy

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en, de

Expires: 2028-11-18T23:00:01+00:00

#
# Thank you!
#
-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQQ958DEa5vO2RoOM/newBNzBoqfWwUCaR3CqQAKCRDewBNzBoqf
W2acAQCmJIECZAqzfRS0v/bMe82WSCL2N02Yvc77b3MKxhtf6QD/aa2/NG6q0SrA
zugA47EYOK5Ddj5O4YW8iFuODpn6cwA=
=k2OC
-----END PGP SIGNATURE-----