A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

Contact: mailto:security@johnopdenakker.com
Contact: https://twitter.com/j_opdenakker

# This is my personal website and I run this site for free. If you find a real security vulnerability, 
# please contact me and explain the issue. I'll fix it as soon as possible.
# I have no bug bounties to give, but will mention you on my hall of fame page. 
# But if you've just run automated tooling to find someting trivial and then reach out with the
# expectation of cashing in, I'll just ignore it and won't mention you on my hall of fame page: https://johnopdenakker.com/hall-of-fame/.