A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512



#

# EP NL RFC 9116 security.txt

#

# PLEASE BE ADVISED:

# Do *not* use this security.txt unmodified on your own website!

# 



#Canonical URI

Canonical: https://epnl.nl/.well-known/security.txt

Canonical: https://www.epnl.nl/.well-known/security.txt



# If you would like to report a security issue please first read our

# responsible disclosure (RD) policy:

Policy: https://www.epnl.nl/responsible-disclosure/



# Our security address

Contact: mailto:mdb-security@epnl.nl



# Our OpenPGP key

Encryption: https://epnl.nl/pgp-key.txt



# We can offer a proper response in the following languages:

Preferred-Languages: nl, en



Expires: 2025-12-31T21:59:00.000Z



#

# Thank you!

#

-----BEGIN PGP SIGNATURE-----



iHUEARYKAB0WIQSwHSIsSkas2Tgrld5YXwS10B/CoAUCaGZHuAAKCRBYXwS10B/C

oFkoAQDDhf+7QS0sEEMiDAMizZvC4RhDdm1Age11jySy9IZsQQEAyemLqiT42ZNJ

aWwwVrgJ+uRRMJO+bJee0Y5nEuZ3PAc=

=Mj8B

-----END PGP SIGNATURE-----