A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# About this website: Anyone can easily create a homepage with https://bt-web.com/
# Date created: 2024-05-10T08:20:39+09:00
Contact: mailto:rfc9116_security_txt@bt-web.com
Expires: 2024-10-07T08:20:39+09:00
Encryption: https://bt-web.com/.well-known/pgp-key_cctokyojapan.com_20240510.txt
Encryption: https://btweb-demo.com/.well-known/pgp-key_cctokyojapan.com_20240510.txt
Encryption: https://btweb-demo2.jp/.well-known/pgp-key_cctokyojapan.com_20240510.txt
Preferred-Languages: ja, en, zh
Canonical: https://cctokyojapan.com/.well-known/security.txt
# coming soon...
#Policy: Policy: https://example.com/disclosure-policy.html
#Hiring: https://example.com/jobs.html
#Acknowledgments: https://example.com/hall-of-fame.html
-----BEGIN PGP SIGNATURE-----
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=67oq
-----END PGP SIGNATURE-----