A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

Contact: mailto:security@djeditech.com
Expires: 2026-12-31T23:59:59.000Z
Preferred-Languages: en
Canonical: https://djeditech.com/.well-known/security.txt

# Vulnerability Disclosure Policy
# If you discover a security vulnerability, please:
# 1. Email security@djeditech.com with details
# 2. Allow 90 days for remediation before public disclosure
# 3. Do not access, modify, or delete data without permission
# 4. Do not perform DoS attacks or social engineering

# Out of Scope
# - Spam, social engineering, physical attacks
# - Denial of Service (DoS/DDoS) attacks
# - Issues in third-party services we don't control

# Thank you for helping keep djeditech.com secure!