A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Volt Europa RFC 9116 security.txt
#
# PLEASE BE ADVISED:
# Do *not* use this security.txt unmodified on your own website!
# 
Canonical: https://volteuropa.org/.well-known/security.txt
Canonical: https://www.volteuropa.org/.well-known/security.txt

Expires: 2024-11-01T11:00:00.000Z

# If you would like to report a security issue please heed / read the following:
# https://en.wikipedia.org/wiki/Coordinated_vulnerability_disclosure
# How to disclose a vulnerability:
#
# Please mail details to:
Contact: mailto: security@volteuropa.org
#
# 1.    Include as much information about the vulnerability as possible,
#       that will help us to reproduce the problem to have a better understanding of it
#       and fix it properly.
#
# 2.    Please include your contact-info, so we might get in contact with you,
#       if we need further information.
#
# 3.    Very important! 
#       Don't tell anyone what you found.
#       Destroy any data in your possession you've stumbled upon.
#       Don't delve deeper into our systems, than necessary to prove that there is a problem.
#       Do not (!) abuse a vulnerability you've discovered. Or we will contact law enforcement.
#
# 4.    If you want to create a write up or publication on the vulnerability you've disclosed to us,
#       see 2. and tell us about it and give us the chance to review it before publication.
#
# 5.    We can offer you a swift and proper response in the following languages:
Preferred-Languages: en

# =********-                  +*******+.                       --===++*  .--==++*-          
# .+********.                -********:                        ********  -*******-          
#  :********+               .********-                         ********  -*******-          
#   -********-              +*******+.                         ********  -*******-          
#    +********.            -********.    .:-------:.           ********  -*******+-------   
#    .********+.          .********-  :=+***********+=:.       ********  -**************=   
#     :********=         .+*******=  =******************-.     ********  -**************=   
#      -********:        =*******+. :********************+:    ********  -*******+======-   
#       =********.      :********. .******=-:....:=********-   ********  -*******-          
#       .+*******+     .********: .+****=.         .=*******.  ********  -*******-          
#        .********-    +*******-  =****+             =******=  ********  -*******-          
#         :********:  =*******=  =*****-             :******+  ********  -*******-          
#          -*******+.:*******+. :******=             =******=  ********  -*******-          
#           =*******+*******+.  :*******=.          -*******:  ********  -*******=          
#            +**************.    =*******+-:.    .-+*******-   ********  :********:         
#            .+************:      -**********+++**********-    ********   +********+====++*.
#             .+**********-        .=*******************=.     ********   .+***************-
#              .+********-           .-+*************+-.       ********     -+*************+