A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:abuse@hobby.nl
Expires: 2023-12-31T23:00:00.000Z
Encryption: https://hobby.nl/abuseathobbynl-pgp-key.txt
Encryption: https://hobby.nl/beheerathobbynl-pgp-key.txt
Preferred-Languages: nl,en
Canonical: https://hobby.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE6jequLFa7M03vGVE3o/w6VtBS5sFAmPYG00ACgkQ3o/w6VtB
S5vHgg//dtohITomcgOvcUWebxQoSkZ7LBcxwjrzBgTeME+IOyw40OTMvUQo2gM9
B5HveH8Cf2cbAGW5k9QGS0BW1W0jmtVLryvX/NbHi07GDMyQOPjPax7N0PUTSARE
NRlPwO2j4YqdPt2v9nVPbN4JfvnZfbNXGWBBR1PjcDfA67Q4djhkL1qFc2LtOsd3
PRggC0S7LUaknf5L3JapyO2M2+EgdtoFAwYwKrqCAkCQORZ5vl4skGMuurc+JamY
9R+aRVPUZjkQbMdgRa0xN1T9vYL5KBh+XGa0XGG0bO5Zmw2dhtQWOaxHVPtMXPXY
y9L3WTtWiU3Fn9qrBgjwKh7RQV03ML1I6SJRgG0b1wWoewz+j1k6EhhOe+tBN1in
gYMTG+r4bmJH5yF1HkjmFk33YCbTm8EUQASS/oQFjUbi8d+0H7WSxNr4iNFcNmaH
w/MpWgJLxulGd+bnZ0gk3VgglYWNeclRTpipqi4Cm/XWlo/YqyP22zaDgBU0Ry8D
OylGF118QtrVPP3G1e6tSrRYmfTrMiYYMWEz4ZWePTfQZr7q2MteCp0hAPGgPgnP
U27Jo4d0FHbPgYmdiwy5spo/OaIsI3BkhqfAeYT/9JUTdF8snO7MzNJ77JcQmWEZ
3beVc286SKoWBjvs8sMZ68xhRSMobb5Id1vi23scIOIhDMy4d+k=
=XLAD
-----END PGP SIGNATURE-----