A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:hostmaster@kleine-koenig.org
Expires: 2030-12-31T23:00:00.000Z
Preferred-Languages: en,de
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEP4GsaTp6HlmJrf7Tj4D7WH0S/k4FAmgkXLIACgkQj4D7WH0S
/k45bQf9HvZuXTX9dydH8/cQC4hwCDgV5LWnPdhlSwzW8UDY5ZDllIp9B9OTHDle
ELYc+Y4xEhUVGFX+ea7IAFU22btZe60PbTsjIul0iN0K/Rp0SS1g3Zwg72Yddtw7
FGf8mOdpUxi7yay0rBl6/ytePrCLJPrUJq+3Efb202wdu12j71IL1kUpeMJtOfEN
/mD98JydPnZbGwbnwF75+YC0GNdgC9pgYOU5KtfEFbshRE50oFV2y5EQ+Xf+XWmE
4SrFDDJU6ReuF13WZLQnVYFlj6LDCCJGIDfu2s6vjk+E0bjssqmfI+qkiH49Qnm6
+RYGOllKzD22Z/O6eaQiiENmGXo/Vg==
=mEsb
-----END PGP SIGNATURE-----