A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@d-mind.de
Expires: 2023-12-31T22:59:00.000Z
Encryption: https://www.d-mind.de/pgp/security.asc
Preferred-Languages: de, en
Canonical: https://www.d-mind.de/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=XgO1
-----END PGP SIGNATURE-----