A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@swen.nl
Contact: mailto:security@swen.nu
Expires: 2026-02-01T14:00:00.000Z
Encryption: https://keybase.io/aswen/pgp_keys.asc?fingerprint=e3de2eb9ff38593f08b905a42d339ccd3e75be36
Policy: https://s.swen.nl/vulnerability-disclosure-policy
Preferred-Languages: en, nl
Canonical: https://graphs.swen.nu/.well-known/security.txt
Canonical: https://ha.swen.nu/.well-known/security.txt
Canonical: https://nc.swen.nu/.well-known/security.txt
Canonical: https://observium.de-eekhoorn.eu/.well-known/security.txt
Canonical: https://px.de-eekhoorn.eu.well-known/security.txt
Canonical: https://s.swen.nl/.well-known/security.txt
Canonical: https://smokeping.de-eekhoorn.eu/.well-known/security.txt
Canonical: https://webmail.melkweg.nu/.well-known/security.txt
Canonical: https://webmail.swen.nu/.well-known/security.txt
Canonical: https://webmail.swen.org/.well-known/security.txt
Canonical: https://www.degelebus.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQTj3i65/zhZPwi5BaQtM5zNPnW+NgUCZ6OhgwAKCRAtM5zNPnW+
NqEIAQDsYgvMB/ReMZD1f4NT2aqfMJ7wEBNCLEc4i/UfDJG5PgD/ckC0c/s3Br4g
Xh8896y2jJXlvs9BppVW2cfsrJs1uwU=
=d4Zr
-----END PGP SIGNATURE-----