A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256



Contact: https://cvd.kennisnet.nl

Expires: 2025-12-31T22:59:00.000Z

Encryption: https://cvd.kennisnet.nl/pgp-key-cvd-pub.asc

Preferred-Languages: nl, en

Canonical: https://cvd.kennisnet.nl/.well-known/security.txt

Policy: https://cvd.kennisnet.nl/

-----BEGIN PGP SIGNATURE-----



iQIzBAEBCAAdFiEEwVMEs3Xm1SBr+wCu4r49fFJlGzUFAmX7AAwACgkQ4r49fFJl

GzXWKw//VBEUKkQHOnjL0ppcR6MRgx32D7VaWNSTA3uTGeK5T6Y08gokd4+FCKj9

zbH+C6PJ8vVTrA0v/7ABMx4gikxTigalvap+wktQX0HivqSEtTWmSPkQ/Hiq2xn+

R7aT0olrM9+bdfKs55lNDsq5uhGnDBsu4aC6knbgO8LrxvHU2mhc4KJBwEEWLScP

vxcFqAQATHe537NPA1L71nriFbKncJ2Gi5iyR9N42nKbJrgUQANTKqGC712+xAhH

Ebo1SXQ5DC8xhGyl1Q0QFzHOijoy7IUsLBWUO3OC7axcUeeqzrRdjdVycwBfEynI

L/T7kyALsiEtleXNEp7HTmEz+zNJaveryg3TkmfqS7Qjm8jHnWZnydFcRyIZdyEl

njb/6aqtgCzUflDNxVBxvqewxwcLuHfrdyuH7spU21xtWeskin4KGX5PappjTRRw

0lTAPbcxvjFogRM5klC5DVSZBlZEfnexISkIYvhXFL48hapE6ryu59xArXI90K+f

9UKPhJKYEqA4YChRqEPb7BtsHeOkLeqeXnloAZDsA0L5CWoOKAb+npjhjr9au1DH

RIabB+FQXiqRdndXh8yOY3ecwrIKu4pp2cFlLYllnIf1IDPinCp6T6Fk0aOQXUPk

Y1UONPdIZY5EkOeKB7qWwfUqyyiqlrXbTa0NHhRF4/ZI/onaaYA=

=gnTi

-----END PGP SIGNATURE-----