A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Hello dear security investigator,
# 
# I would appreciate if you send me the result you found by mail.
# You can see on my cooperative website, I'm working in the Kingdom of God.
# Please help me.
# I pray for you.
# 
# Yours faithfully,
# Marco van 't Klooster
# CEO Kerk en IT

# Our security address
Contact: mailto:info@kerkenit.nl

# Our security acknowledgments page
Acknowledgments: https://www.kerkenit.com/hall-of-fame/

# Our security policy
Policy: https://www.kerkenit.com/security-policy/

Signature: https://promissa.nl/.well-known/security.txt.sig

# The languages we speak (In the best order)
Preferred-Languages: nl, en, es

Expires: 2024-04-06T14:35:03.000Z