A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@interface-medien.de
Contact: https://www.interface-medien.de/de-DE/kontakt
Expires: 2024-12-23T12:00:00.000Z
Encryption: https://www.interface-medien.de/.well-known/pgp.txt
Encryption: https://www.interface-medien.de/index.php?module=viewer&index[viewer][page]=pgp
Preferred-Languages: en,de
Canonical: https://www.kraeuterhaus.de/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=gg+H
-----END PGP SIGNATURE-----