A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:security@degrasboom.nl
Contact: https://helpdesk.degrasboom.nl/contact/
Preferred-Languages: nl, en
Encryption: https://degrasboom.nl/.well-known/pgp-key-security.txt
Canonical: https://degrasboom.nl/.well-known/security.txt
Expires: 2026-01-01T00:00:00.000Z

-----BEGIN PGP SIGNATURE-----
Charset: UTF-8

wsDcBAABCgAGBQJl3rC7AAoJEMG7GG1ZhC0T7/EL/307BmJ45yhEKwhXnhn9ohN6yr2Y9WpABu1V
rJfWT2RUvsufqglbujoSvxBjy4AT8l8d18yKORUZfgpEb3475zRStHBZQBeYrHVRmAPqygCAtRBg
78dpVJTiTfDUIt///RThh1g8I3kf4MgAwFgvRX23G79K4r9CLzjd55ZDpxTqHY3ICTFUeX50Asjl
jVq+qXV3LKUBQGQ+/C1XDLBLl1e088HvspOhO6j33yGeVK9Mel9h3/1V0azNibpb9Jj0HQqMAVLN
ywYdH4DloS/Va1TsqbmUTyMVQoZrVfhplzOcnDMeO3+diDdh4D0r2NQ9NXkoQ+xk11yrFyybGfK1
ZFvsaxviwiJPbPRNKC4n6x96WZx/3tHVmw+YUyC5kuR01taqt6iz9h4V5OVSaksfI85g8GHKnMGy
SJ385RSlPFQWJfdbKROv8JCiJ4iWXanV0S9L2Ri5MbALynuA1fbOSc7h/uG/vFMmJ10dZ9tBHMNF
SIYTCNtjZGjEFrOYpwThnw==
=b7tn
-----END PGP SIGNATURE-----