A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@talegraph.com
Encryption: https://keybase.io/renchap/pgp_keys.asc
Preferred-Languages: fr, en
Canonical: https://www.talegraph.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=jJT+
-----END PGP SIGNATURE-----