A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 # Security address Contact: ondrej@ondrejsramek.cz # PGP key # Public key: 4096R/A9EF0A8C 2017-03-04 # Fingerprint: 9EC7 FB8B 5C67 5602 CB1C D3A2 FB35 6E00 A9EF 0A8C Encryption: https://pgp.mit.edu/pks/lookup?search=0xA9EF0A8C # Language Preferred-Languages: cs, en # Signature Canonical: https://ondrejsramek.cz/.well-known/security.txt -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEnsf7i1xnVgLLHNOi+zVuAKnvCowFAl1+XEIACgkQ+zVuAKnv Coy1lxAAgPWLVi5G7cMW+TnYfhkieyz5BFU5Dft5sx+h16Oc0iNN6+BMNRsDV8nz E8JxEw7CtxmlUXbxMa7Q8X0yD/Cmak+2GHeRduNsZ2arwiB/QoZCJV6zxlMCkWDB 7hFKqzGhZYLTyjnd3p0YTwcvdHOmdFuFOxvDSO1MUFgD69QTcrOEDDMV73DeciXa oZ7qvSDHzdZjBMyefK+u5cH6J4yIWtBCN0HEr/AwWYUGOJRjPXLDPcN+mrzjY6L8 +LHm8KEtwVDGPYs5ngRE9p/BJbLovEPTOSJjnx9BQuhUDMc51iNHxN2Aln1aJGB6 oeZw9KOV7lpHktJwFrqdgQ6I0EA2iuTOlhRZ7z+1ZW2nk+gZrLkXziFSH18ADL7T 79vlTizBDT3nih4no8W4JESDoRb1sgbkaGEA5FDf1pyYL5jTr6h/H1cn/jNKPSs6 pj8YuMH/hGL6oIHJVObS0LegnpBOiq1MM9TBxuKSSgvfq9iiEhDjV2larEiBsHnA lyttkUrVOEQ3jJxWko0hdbvSrdNWhOwgq7CSUQz2V8IhgDzL/yY5cbHctxQAwg0r cR+Qsy7SlH87UpFt1BIJwIlM6MXNN7PbIHp4C3leouMrmL+7IRFxRiY6R4cGsUz5 kEHDb3poNUSHZCx2DDV8720MNlXJ3gHH92rVmF2uys7zngBJDtg= =+fvH -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2020-08-26 is sorted as securitytxt.
FireBounty © 2015-2024