A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:security@shanelawrence.ca Encryption: https://keybase.io/tehshane/pgp_keys.asc Preferred-Languages: en Canonical: https://shanelawrence.ca/.well-known/security.txt -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE2QxfGc71FG7x7jG6+ylHtS/ykcIFAlzWKpgACgkQ+ylHtS/y kcLFxxAAnmDwwqq4xu1F561WjKPMIwA9nvM2MLHIKkZ44iJuqaUuc1iIyqVDbQvy Kf37LcC2aufdSbQ+RRBEukTBJOYq5EPtg68LTD9KCm2vKIAZOjnZmbXv3EvqVUh8 VSb3CQ5ahFR29GWs2s/+2IcKhiNXpf3PEbtPH7YsdY8c7PmuDQy+NAzBv8F77QAP RstRI6mXs67NPUPpvGCaAwaYu1UTF24hPUY4rk715ltMndAwXHz+dT+8CydtuREI Xqxtv6BB+t5LUs4YlJIlOqK+0n//Hn5izWOAgZ1BpE31Y5up+54PbKeXOK3nHVxr BP5Zqf3R0yPcvva1hVDcRqnQ9yTBN6RnOME6pJaYEY36Y+QWzI4x39P5bhvW95SD MYL4AbqbTBoEmDloOapR03z12woZv9Yt2Foe1O8K1+jWzuz4m5zwqIj8n3rU+POe wA+FLgAq/DcgStXTZxFl03Qc16EEhw5U6jQWf804D8ENCH4YZHqe0hs0BaLj1Mi0 4yLazdwKaNcwTlXXtcnrKaZWPiae3UVrMpBIsauiOL4JUdBRRbyYBxAOfF2GJPR7 vad4jfi4OXVy1+NoPO+1bfWGY03Oqml2x6FEaTEY4n2pKCUAjHczg6+rJq0OSKQn OW9QvH+GcL0C9zbix4wDbMynLPQ/t4qwYFpOoLYGWVFkAP2UEh8= =doTj -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2020-08-12 is sorted as securitytxt.
FireBounty © 2015-2024