A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@omg.lol
Expires: 2024-12-31T05:01:00.000Z
Encryption: https://home.omg.lol/info/contact
Acknowledgments: https://home.omg.lol/info/thanks
Preferred-Languages: en
Canonical: https://omg.lol/.well-known/security.txt
Policy: https://home.omg.lol/info/security
-----BEGIN PGP SIGNATURE-----
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=R2p6
-----END PGP SIGNATURE-----