A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2026-01-10T08:20:39+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2026-06-09T08:20:39+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_sanshudenki.co.jp_20260110.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_sanshudenki.co.jp_20260110.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_sanshudenki.co.jp_20260110.txt
Preferred-Languages: ja, en, zh
Canonical: https://sanshudenki.co.jp/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=2Zf+
-----END PGP SIGNATURE-----