A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2024-04-10T08:20:39+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2024-09-07T08:20:39+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_bt-web.com_20240410.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_bt-web.com_20240410.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_bt-web.com_20240410.txt
Preferred-Languages: ja, en, zh
Canonical: https://bt-web.com/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=lSdb
-----END PGP SIGNATURE-----