A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:abuse@belwue.de
Expires: 2025-07-24T12:00:00.000Z
Encryption: https://belwue.de/abuse-pgp-pubkey
Acknowledgments: https://belwue.de/acknowledgments
Preferred-Languages: en, de
Canonical: https://belwue.de/.well-known/security.txt
Policy: https://belwue.de/disclosure-policy
Hiring: https://belwue.de/stellenangebote
-----BEGIN PGP SIGNATURE-----
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=6YLc
-----END PGP SIGNATURE-----