A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Canonical: https://normative.io/.well-known/security.txt Contact: mailto:security@normative.io Expires: 2024-07-03T22:00:00.000Z Encryption: https://normative.io/security-at-normative-pub-key.txt Preferred-Languages: en -----BEGIN PGP SIGNATURE----- iQJKBAEBCAA0FiEE9AHgwgBMvGWfx+h6yJ82DpWuKd0FAmT4bsIWHHNlY3VyaXR5 QG5vcm1hdGl2ZS5pbwAKCRDInzYOla4p3fEpD/0aYQ3ESUhlYz3sWAgRTXL0Jzkm P3yNgPBk4Qna/Xz4KttpbE7rgRd+fe9GrpTQPA1rHVD+x5v87JbW+xyEO6EOtAKH XQNf75MrnPgT0Q35PNCNSLm7eXttwzoEwJGVtooS3qzcYZapYQQ2aV/n+f26F1DC pTgfEK3G6OGE6lQTP1JqWO4sckfhmDwdkm4Rkvy3GMpMWsTzzxhKEHxDkqMsdWbb 5EP8SuBuqznPYUirTXzQi7YKHPGM+Tm3tuH3KX7kiaMhrYZ4FinOWaSB4NCfw6r/ HUDNj9aDUyGaZunyrj/nOTLmdwPzTDwqcqmCQGihI/dIaa7CoIpZtr7VdjVqrrJk VEpuh8pc+dPgWC9zP1Y+M/Tm6kFU9K5B+lTLxn5a2rPNEulhuoeU1JZQHu4CMnZD tKpYI6EvPDAQwJqe60XfyChuWrfDpjHfvGc71RP+ELMiKIIHcw46fc/oSSo7Jt09 vxsihITHCkD3er5vvJeXzcKAxiaFydoJWZmjWLVkwUFYKHKMHJOEZ2fR6rH4F97W m976hgWqi9SoLm2oJW9edHkdYbB0c/DMcYnJu9ZrVaXLR7OcLVlaSxZ4PdXzbA7y IY9BeJpHptu1A7ucYlA/XlEg+bEIox38mVm6Too1F+yT6Mf+iIr/zUmx33XOkdPv lzzGeodIBdkXe+f9bA== =wkuO -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2023-12-01 is sorted as securitytxt.
FireBounty © 2015-2024