A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:info@jannesmannes.nl
Expires: 2025-03-04T14:29:23+00:00
Encryption: https://jannesmannes.nl/pgp-key.txt
Preferred-Languages: en, nl
Canonical: https://wonderfeel.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=Ywf1
-----END PGP SIGNATURE-----