A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: security@timkuffner.de
Expires: 2022-04-30T22:00:00.000Z
Encryption: Encryption: https://keybase.io/tim_kuffner
Preferred-Languages: en, de
Canonical: https://kita-meyenburg.de/.well-known/security.txt
Canonical: https://kita-meyenburg.de/security.txt
Canonical: https://kita-eichhörnchen/.well-known/security.txt
Canonical: https://kita-eichhörnchen.de/security.txt

-----BEGIN PGP SIGNATURE-----
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=uAJu
-----END PGP SIGNATURE-----