A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Canonical URL
Canonical: https://daxis.nl/.well-known/security.txt

# Our security address
Contact: https://daxis-ict.nl/meld-kwetsbaarheid/
Contact: https://daxis-ict.nl/report-vulnerability/

# Our security policy
Policy: https://daxis-ict.nl/meld-kwetsbaarheid/#policy
Policy: https://daxis-ict.nl/report-vulnerability/#policy

# Hall of fame
Acknowledgments: https://daxis-ict.nl/hall-of-fame/

# These are the languages we speak
Preferred-Languages: nl,en

# Our OpenPGP key
Encryption: https://daxis-ict.nl/meld-kwetsbaarheid/
Encryption: https://daxis-ict.nl/report-vulnerability/
Encryption: openpgp4fpr:811100944C94E98784B291AC6C447AC1825F7655

# You shouldn't trust this file, once it has expired (like bad milk)
Expires: 2025-09-02T05:20:36Z

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEgREAlEyU6YeEspGsbER6wYJfdlUFAmg9NKUACgkQbER6wYJf
dlVkTBAAlwwEPwKQ4I0kHoxta/IbvwW87tEfhBB8y/aq4U8qgaPlitMfYTCZgPCa
usbsoicZxqdEYuQIEN/SVvnWSeCU/PIltW8roYgjj2toIE1iqrn2oMzXBHb0QkAU
JeY59/UxV98C8osXiPE//Unc+PZiqseeyNC6+eZKhWdUbq2nyPPywx2F1Wbg5Ull
6Ail6F9eEmq2FsZXgaIVbjsyO+9c06ppjZaaQ0G7BGfIeVox0HjY/HP1QmO5s4Bb
ElOGZs4ceRwV6s7g5pMeQEHuAFpN58gABRKj9pkjEs6P7clLXPkkBB6GZU62o3GE
acZnep32ZuOXigms4s8VPUsYa1Js4se80Xui26/ncgzxp0pJEQstZHlpxct1vSwo
6UKrX7jWXjG3fVQrL7q+aqLWawTXyaPc+xG0oppITOHDDKdqt8qj5bGk3fIVvDQx
7wR9KvjYBrz2y4Cr4NRy7FWnZjtJQJYHpWuHR1BveRjVstSSPhbohHfQC/K+t4Hw
KOzyI+cF5N4oBINo/jHyzjRgxTgjt77d528VUm2MIYPdoP9MONkwM+Jxg12GJR1f
n3lutm9SGcNW5LZWUBnjJ6Pt2hm0Y0Ydj2RPDQO5j1QfkUYPfGsZgrH4jyHUhtzp
l62BeeQZ9TmBQr9iwgSh1dG1fPbP4oM0R4pP6G6PV3MTRgqkTEo=
=C90k
-----END PGP SIGNATURE-----