A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:info@jannesmannes.nl
Expires: 2025-10-25T07:55:12+00:00
Encryption: https://jannesmannes.nl/pgp-key.txt
Preferred-Languages: en, nl
Canonical: https://www.evry.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=Ci5j
-----END PGP SIGNATURE-----