A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:info@professional.wiki
Expires: 2025-04-30T00:00:00.000Z
Preferred-Languages: en, de
Encryption: https://pgp.mit.edu/pks/lookup?op=get&search=0x17362FF02F3D9488
Canonical: https://professional.wiki/.well-known/security.txt
Signed by: https://keybase.io/kghbln
-----BEGIN PGP SIGNATURE-----
Version: Keybase OpenPGP v2.1.13
Comment: https://keybase.io/crypto
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=+GLm
-----END PGP SIGNATURE-----