A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@feedmail.org
Encryption: https://feedmail.org/a/pgp.key
Encryption: openpgp4fpr:B66B891DD83B0E677D84FC309BB92CC1552E99AA
Preferred-Languages: en

Canonical: https://feedmail.org/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEtmuJHdg7Dmd9hPwwm7kswVUumaoFAmGLDTUACgkQm7kswVUu
mapd2wf9Hxqzm8M5U8n7rQRQZxdNMKGTMzvAh/TDuBeV6N8NVI+LR3XsyJZvn9ls
8hW6ivJBKcCqPKMAU/VUQrWcdwCgpAzLkQk/DKhE5Aw8E1E65D2kRHAdyMohEzg+
GTMLemxQalVyM50OudSe30xeuNHnr4Gwwt1aDFLhZ2KtHndUellMltaYnkB2rdaQ
+T0Uh1hOEGHiYci7AIe6kG1MkcwNgJy+tEwpGglTaAzT90XR4c36rIonl1WBAk09
HxFfpyc9SrKKrZ5UShYSr4YQfF3mf3Hl8BTGSt+k4ew2ByLARwVc8gTiTImbF6PF
BhaRqlyvULrZ1C6KcRbyc/5sAislLg==
=rTDS
-----END PGP SIGNATURE-----