A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# version: 202305021035a
# Meantime Information Technologies Ltd - reporting security vulnerabilities about systems we manage
  
# Please report any security vulnerabilities to us via the contact method(s) below. Please avoid including any sensitive
# information in your first message to us. When we reply, we will initiate a secure communication method.
Contact: mailto:tdsa@meantime.co.uk
 
# Please use the contact form below if you're interested in a career with Meantime Information Technologies Ltd
Hiring: https://www.meantime.co.uk/contact.php

# Expiration date
Expires: 2037-12-31T00:00:00z

# Meantime Information Technologies Ltd is based in the UK.
Preferred-Languages: en

Policy: https://meantime.co.uk/security-policy.php
  
# Please see https://securitytxt.org/ for details of the specification of this file