A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@snowhaze.com
Contact: https://snowhaze.com/en/#contact
Encryption: https://snowhaze.com/security.asc
Acknowledgments: https://snowhaze.com/ssa.txt
Preferred-Languages: en,de,fr
Canonical: https://snowhaze.com/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
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=/RCp
-----END PGP SIGNATURE-----