A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Contact me here
Contact: mailto:contact@louis-vallat.xyz

# Consider this file outdated if you found it after
Expires: 2022-12-31T23:00:00.000Z

# If you need to talk with me securely, use this PGP key and send a message to my private email address insteand of my public contact one
Encryption: https://louis-vallat.xyz/key.pgp

# I can talk in these languages
Preferred-Languages: en,fr

# This file is originating from
Canonical: https://louis-vallat.xyz/.well-known/security.txt