A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Canonical URL
Canonical: https://daxis.net/.well-known/security.txt

# Our security address
Contact: https://daxis-ict.nl/meld-kwetsbaarheid/
Contact: https://daxis-ict.nl/report-vulnerability/

# Our security policy
Policy: https://daxis-ict.nl/meld-kwetsbaarheid/#policy
Policy: https://daxis-ict.nl/report-vulnerability/#policy

# Hall of fame
Acknowledgments: https://daxis-ict.nl/hall-of-fame/

# These are the languages we speak
Preferred-Languages: nl,en

# Our OpenPGP key
Encryption: https://daxis-ict.nl/meld-kwetsbaarheid/
Encryption: https://daxis-ict.nl/report-vulnerability/
Encryption: openpgp4fpr:811100944C94E98784B291AC6C447AC1825F7655

# You shouldn't trust this file, once it has expired (like bad milk)
Expires: 2025-08-02T00:57:24Z

-----BEGIN PGP SIGNATURE-----
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=2peu
-----END PGP SIGNATURE-----