A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Reporting security vulnerabilities to Charles Taylor

# Version: 0.1
  
# Please report any security vulnerabilities to us via the contact e-mail address below.

# Please do not include any sensitive information in your initial message, we'll provide a secure communication method in our reply to you.
Contact: mailto:vulnerabilities@charlestaylor.com
 
# We're always on the lookout for talent, please visit the link below and search for "information security" if you're interested in a cybersecurity role with us:
https://www.charlestaylor.com/en/careers/

Expires: 2038-01-19T03:14:07Z
  
# Please see https://securitytxt.org/ for details of the specification of this file