A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@visionary.berlin
Expires: 2024-09-12T13:00:00.000Z
Encryption: https://www.visionary.berlin/security.visionary.berlin.txt
Preferred-Languages: de, en
-----BEGIN PGP SIGNATURE-----
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=mr5o
-----END PGP SIGNATURE-----