A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:secure@jegard.org
Expires: 2027-05-25T10:00:00.000Z
Encryption: https://www.jegard.org/pub-key.asc
Preferred-Languages: fr,en
Canonical: https://yann.jegard.org/.well-known/security.txt

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEENsqQQhhQSK1GnnW49pPO9GitZFMFAmKOMPcACgkQ9pPO9Git
ZFPeGwgAoGibqyux2Cqp2R2nHyFb0HHYQuZMk6wv7xys8k8vb5SvRcGMoRuzLjdc
py+T8yUhbWfzOmAah4warZqvwRu7xDwlqJqpG+fzOWOhnDNdLJs8R458NGRGBC06
brfaUmmU+8TC78RnB3h0xfaE9w3p5q3DleQDVBwZq4Zl73fCyg1Cbr9IONtmhnMp
n7gAEEWcFthZjug9DAxQ4RyxB0Se6crr6nC6+zb4Zi9xkZ0oG8BevXeRcTrJE1JO
FY8pTPEaI9g/CMmOuU4G8bhdaUbIy4+CNnPHaTLaeuacgwLIWbiPx1byVIJy98Md
A47Sz9x8jPza4jrn30z1LZJERhXSXw==
=ZZoE
-----END PGP SIGNATURE-----