A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:info@jannesmannes.nl
Expires: 2024-11-16T12:43:49+00:00
Encryption: https://jannesmannes.nl/pgp-key.txt
Preferred-Languages: en, nl
Canonical: https://evry.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=dSSh
-----END PGP SIGNATURE-----