A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@basenet.nl
Expires: 2025-02-22T22:59:00.000Z
Encryption: https://www.basenet.com/securitytxtorg/
Acknowledgments: https://www.basenet.nl/securitytxtorg.html
Preferred-Languages: EN, ES, NL
Canonical: https://www.basenet.nl/.well-known/security.txt
Policy: https://www.basenet.nl/securitytxtorg.html
-----BEGIN PGP SIGNATURE-----
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=HMZa
-----END PGP SIGNATURE-----