A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: http://26-12-1958.nl/.well-known/security.txt
Canonical: http://www.26-12-1958.nl/.well-known/security.txt
Canonical: http://service.intakt.com/securitytxt/generate.php?domain=26-12-1958.nl
Expires: 2027-01-02T03:39:27+00:00

# Please always try to contact us through our online form to speed up things.
Contact: https://www.intakt.com/security-en?lang=1
Contact: https://www.intakt.com/security
Contact: mailto:security@intakt.com

# This is the PGP public key that we use to sign our security.txt.
# Do *not* use it to send encrypted mails to us.
Encryption: dns:2591d67d64ef2e80cde67d27b6510e61eca0b5b7f220a30cbaf0bcf0._openpgpkey.sidnlabs.nl.

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
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=CMDh
-----END PGP SIGNATURE-----