A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:tobias.barkskog@quicknet.se
Expires: 2027-01-01T00:00:00Z
Canonical: https://quicknet.se/.well-known/security.txt
Encryption: https://quicknet.se/.well-known/pgp-key.txt
Encryption: openpgp4fpr:33FE7673F5C2E672D67BCA450F2266FE542EA487
Preferred-Languages: sv, en
-----BEGIN PGP SIGNATURE-----
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=e3Hj
-----END PGP SIGNATURE-----