A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# In the event that you have discovered a technical vulnerability in an IT system of gibb, we encourage you to report it to the y organisation using the information below.  

# We forward your request to the appropriate unit. 

#

# git.gibb.ch is not the production dev environment but the gitlab environment for learners, students and teaching staff. 

# There are many repositories that are deliberately publicly accessible and in most cases are student or student projects, 

# or learning content and documents that are deliberately made publicly available by lecturers and teachers.



Contact: https://app.bugbounty.ch/public/engagement/details/62a21a99-6a44-4569-bbc7-dea6cfa9e3e0

Contact: mailto:security@gibb.ch

Preferred-Languages: en, de



Canonical: https://gibb.ch/.well-known/security.txt



Expires: 2025-12-31T23:59:59.000Z