A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@germancoding.com
Expires: 2025-01-02T22:59:00.000Z
Encryption: https://germancoding.com/.security/security-pgp-key.asc
Encryption: https://germancoding.com/.well-known/openpgpkey/hu/t5s8ztdbon8yzntexy6oz5y48etqsnbb
Preferred-Languages: en, de
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEPDv/mGEIMMLtEzY+y9tb8M6fxXYFAmWSBbQACgkQy9tb8M6f
xXbbFxAAjQ4Wcx7RH/w4axhEZcdvBiaINCQM9T1G73Sqdz/2L/zrrzUbMsM/j3b9
MmyYoIgZOQpCUgQ0f5wE1dOaazh4kZsl5aL7iqMBJhS2wWgYsXkT2ru6uYVWnG17
VwcHKRDJhOBUG7HK99OuRKzJUROBacLXFrVPpr1p2+aJNO4m5hYJcoJsYZPi9Cs3
zCZY2TGXtNNBWQJACWt4eGuHb12DKUX5Q2/o10MRgly3tHhd1PBi4tOkY9plhWzZ
cfjhvYWdrYNKEftTb34S1QrGr/OjNGhhIlBj/rUPEdrQNR/nudwn2PYs9zdZ2sdm
SQan3OD9T8tY0m4s8j6o9sjHTBU5kjSIeotgRoXGVaUpbQcbbBit2xW7nonPrKma
zPr4gGdZat07q2cQTgboUDOAsTGl8ZsECuVUF0mlPY11axW/BylnUFxsTyaqwA3G
aR8Dt6LoRF9ssrRoadbNP0b7IZ4LKng0Gj7sTEZneUirPPV5zmaxFtnUrNwIkp1u
K1YQ8apMNFxLtzScSZvkLz+GyaiSHnnbyATzWJOa88LNwHldUPQWyHhPezhd47vO
l0EkWY3cTaoDm+6zlpxh67ezm21ZSqzzYzSqhvB1fB6h0DeJqunI1eZP/ZV6hvZN
ZmPE/ERT4Nynp0RXEP31X+jkfgIKLoeg73IXZK2UfGm1GkUdGGM=
=/RmL
-----END PGP SIGNATURE-----