A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

# Security.txt voor de-wondere-wereld.nl
# Conform RFC 9116

Contact: mailto:info@de-wondere-wereld.nl
Expires: 2026-03-18T06:16:04Z
Canonical: https://de-wondere-wereld.nl/.well-known/security.txt
Canonical: https://www.de-wondere-wereld.nl/.well-known/security.txt
Policy: https://de-wondere-wereld.nl
Encryption: https://de-wondere-wereld.nl/.well-known/pgp-key.txt
Preferred-Languages: nl, en
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJoeeakAAoJEL5n8Olt/8jntY0H/RjeLL6CJHfS5XDhYFiISg7D
ceXXzq3e15+xySchITwuB96v6EcOsUruvdbkg8jUhTqpvnLGIHkU2Ua9XSu/Bj+t
WwXKmobiqf55pRpDpvjLM2r+tuOyDvC+LH2q00ESO90Aa0cBV5tYX6LMZIy/4LB/
g8u1cYA6/XJBG7vQIqQfzUhiNeUZdHucZWYXwDQkTk6FFD7XWgxGrrI2Qd/yCIKI
FEb4ztV5JPPNOiTuGmoFMEHlvIg0TYKyd0Av2B6XPsonDEe8BRl7DiIMqQJNX3uM
pMi/q52/fKG7IGDLwzx4rI1u6s6qtsjDip9VKPLPf5rKdSM+bEGlqfi0+EoP4Io=
=wWT+
-----END PGP SIGNATURE-----