A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Conforms to IETF `draft-foudil-securitytxt-12`
Contact: mailto:security@kimoby.com
Expires: 2024-01-01T05:00:00.000Z
Preferred-Languages: en,fr
Canonical: https://www.kimoby.com/.well-known/security.txt
Canonical: https://app.kimoby.com/.well-known/security.txt
Canonical: https://partners.kimoby.com/.well-known/security.txt
Canonical: https://review.kimoby.com/.well-known/security.txt
Canonical: https://pay.kimoby.com/.well-known/security.txt
Policy: https://www.kimoby.com/security/security-policy