A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# Our security address Contact: security@healthengine.com.au # Our PGP key Encryption: https://healthengine.com.au/pgp-key.txt # Our security acknowledgements page Acknowledgements: https://healthengine.com.au/hall-of-fame.html # Verify this security.txt file Signature: https://healthengine.com.au/.well-known/security.txt.sig
This policy crawled by Onyphe on the 2020-06-04 is sorted as securitytxt.
FireBounty © 2015-2024