A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Expires: 2025-12-31T23:59:59.000Z
Contact: mailto:security + 0xe9[.]net
Encryption: https://0xe9.net/pub/pubkey.txt
Preferred-Languages: en, fr
Policy: Toute vulnérabilité ou autre problème de sécurité lié à ce site
peut être soumis à l'adresse email indiquée ici même. Merci.
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEKvnNJdGo3A9WFOAz/P+a2bc17kQFAmmjDqcACgkQ/P+a2bc1
7kQ9pQgAnnCuiXvuazQI4HsnaqEQ9ivpJrthhZ/N8UwESI2Bh3NnFEArzDp2CMxc
frsbmKEbstdR6+1z/N6DTcA61Pg5VL7fGfeIQUXEP5/dGOiyhknH5VLR7L3rycSu
3Uc48hq38Jw93ArOn1dP1KXdNN2m0u0uYSj4ZZxQ+aEuoekUyRb1vC4U/fjXZYEv
Sa7fTFsaK+Y7DpWJtNbMwxdkEll3Nl+U6+Zh/jz+CVks/rydBK7W/wKNtfnE/aDq
WsCCHjFAMIEVPMF+d/biFF+Fv1M0rovDVUFpLX28Hc7Q7u+BRfIEgIHd2sIpc/J6
qJh+TO4Zc198wHQC6rEx1g1tktC7nQ==
=kVzx
-----END PGP SIGNATURE-----