A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: https://tmx-publisher.gesbro.de/.well-known/security.txt
Contact: mailto:security@gesbro.de
Expires: 2024-03-05T11:00:00.000Z
Encryption: https://tmx-publisher.gesbro.de/.well-known/gpg.asc
-----BEGIN PGP SIGNATURE-----
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=4gbV
-----END PGP SIGNATURE-----