A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@bryansakowski.com
Expires: 2025-01-01T06:00:00.000Z
Encryption: https://keyoxide.org/81DB99F680093A76BB645F5BF552E6D22FD70298
Preferred-Languages: en
Canonical: https://bryansakowski.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQSB25n2gAk6drtkX1v1UubSL9cCmAUCYYmktgAKCRD1UubSL9cC
mOYDAP9rqNM6p0tOMrysIMbKBaDiukh5lFbU0h5AL3SUZ+KjQAEA6rHfnH8b0RIm
MNNgRWapYAr+giaricSrmsdp2mhyuwM=
=eUth
-----END PGP SIGNATURE-----