A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# Our policy on finding and reporting security vulnerabilities Policy: https://ca.bigbank.eu/security # Verify this security.txt file Signature: https://raw.githubusercontent.com/bigbank-as/security-txt/master/src/security.txt.sig # Want to help? Hiring: https://jobs.bigbank.eu # Notify us Contact: https://ca.bigbank.eu/security # or Contact: mailto:email@example.com
This policy crawled by Onyphe on the 2023-09-01 is sorted as securitytxt.