A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Canonical URL
Canonical: https://daxisweb.nl/.well-known/security.txt

# Our security address
Contact: https://daxis-ict.nl/meld-kwetsbaarheid/
Contact: https://daxis-ict.nl/report-vulnerability/

# Our security policy
Policy: https://daxis-ict.nl/meld-kwetsbaarheid/#policy
Policy: https://daxis-ict.nl/report-vulnerability/#policy

# Hall of fame
Acknowledgments: https://daxis-ict.nl/hall-of-fame/

# These are the languages we speak
Preferred-Languages: nl,en

# Our OpenPGP key
Encryption: https://daxis-ict.nl/meld-kwetsbaarheid/
Encryption: https://daxis-ict.nl/report-vulnerability/
Encryption: openpgp4fpr:811100944C94E98784B291AC6C447AC1825F7655

# You shouldn't trust this file, once it has expired (like bad milk)
Expires: 2025-06-14T22:09:24Z

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEgREAlEyU6YeEspGsbER6wYJfdlUFAmfUtyQACgkQbER6wYJf
dlVZAw//b4I/625Ct+VLDD7paV68vmXF08+WHpSnKdGSt2Of6q8DzEeNGXeuQNGB
sRiD8jeoiuEXvkVpiC6eD4oBEvrls+UXs2jNELzpD7e+uApe2gmTm7xlxCfEU4v5
cInVHIyKn+TQojd+hbqyuIoRWGoFAhWC2OAOnC9+JbFYkQDQLMU68b45dBw51FIY
8Uo/yog9hVUHM3CJssU/3310gHjSOWx2MjNyaRrFfuXZvHggLjAXtHV9HJVyyiEW
42ZQmuv2puOOKgZPoaF3B5VMi1/qIA5c79v1mPScB8Q/9+hRfvv13tacRxJrhbug
X8yYvqUrFo6hoF97TQbSM2PbRdorJ/16m5lRXvneDw75PKLLYXNGELlgw720Udn5
X3BrOAqBmXlhoIKzs0xFFJbezomj4RIrBgaGF4OFlHlWuFyyIAcncrhtguPJ3fAZ
ZEK2HtjMMjCTQQ7dbb1hpA7CQ5ZbOzecX3DAMrz54gdiL9kHRkzi4SVa1kcYJjOn
KjWJx+uK9pjIIGf1mqI3s7Yh5XiHRs18GVJu+ncqDNaUouzRrkx5q9/g2V54ZemU
GuGF1tz0w0W+vdi4lj2P5WyJOv4gDMk/GAu4fBs3AthWzQIXnKiIB6ZqsuWQ+VWw
CiRJgVVijymKjWTpvJBUJoEy1nWDd0D4hTSx+K+Awd9n5VDGr0A=
=/bZ3
-----END PGP SIGNATURE-----