A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:jacki@thejackimonster.de
Expires: 2026-01-01T23:00:00.000Z
Encryption: https://thejackimonster.de/gpg-key.txt
Preferred-Languages: de, en
Canonical: https://thejackimonster.de/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=VQhU
-----END PGP SIGNATURE-----