A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Our security contact
Contact: mailto:alain@alainwolf.ch
Contact: https://signal.me/#eu/mEXHzaYIpE4Ilr4n6w7z7WhP0CoWGs4_ceiSrTNzCri7czEG1WZDpbwCS4s1DYgK
Contact: tel:+41-32-510-4730

# Our OpenPGP key
Encryption: https://keys.openpgp.org/vks/v1/by-fingerprint/5143E0D3C00C9DB455BDFD76722389E427362DC5
Encryption: openpgp4fpr:5143e0d3c00c9db455bdfd76722389e427362dc5

Preferred-Languages: en, de

Expires: 2025-05-18T20:00:00z

-----BEGIN PGP SIGNATURE-----
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=8xwu
-----END PGP SIGNATURE-----