generated from DSACMS/.github
-
Notifications
You must be signed in to change notification settings - Fork 3
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #219 from DSACMS/nat/vdp_updates
Docs: Added updated VDP text to Security sections
- Loading branch information
Showing
3 changed files
with
3 additions
and
14 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -176,11 +176,7 @@ questions, just [shoot us an email](mailto:[email protected]). | |
|
|
||
| ### Security and Responsible Disclosure Policy | ||
|
|
||
| *Submit a vulnerability:* Unfortunately, we cannot accept secure submissions via | ||
| email or via GitHub Issues. Please use our website to submit vulnerabilities at | ||
| [https://hhs.responsibledisclosure.com](https://hhs.responsibledisclosure.com). | ||
| HHS maintains an acknowledgements page to recognize your efforts on behalf of | ||
| the American public, but you are also welcome to submit anonymously. | ||
| *Submit a vulnerability:* Vulnerability reports can be submitted through [Bugcrowd](https://bugcrowd.com/cms-vdp). Reports may be submitted anonymously. If you share contact information, we will acknowledge receipt of your report within 3 business days. | ||
|
|
||
| For more information about our Security, Vulnerability, and Responsible Disclosure Policies, see [SECURITY.md](SECURITY.md). | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -138,11 +138,7 @@ questions, just [shoot us an email](mailto:[email protected]). | |
|
|
||
| ### Security and Responsible Disclosure Policy | ||
|
|
||
| *Submit a vulnerability:* Unfortunately, we cannot accept secure submissions via | ||
| email or via GitHub Issues. Please use our website to submit vulnerabilities at | ||
| [https://hhs.responsibledisclosure.com](https://hhs.responsibledisclosure.com). | ||
| HHS maintains an acknowledgements page to recognize your efforts on behalf of | ||
| the American public, but you are also welcome to submit anonymously. | ||
| *Submit a vulnerability:* Vulnerability reports can be submitted through [Bugcrowd](https://bugcrowd.com/cms-vdp). Reports may be submitted anonymously. If you share contact information, we will acknowledge receipt of your report within 3 business days. | ||
|
|
||
| For more information about our Security, Vulnerability, and Responsible Disclosure Policies, see [SECURITY.md](SECURITY.md). | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,7 +9,4 @@ Review the HHS Disclosure Policy and websites in scope: | |
|
|
||
| This policy describes *what systems and types of research* are covered under this | ||
| policy, *how to send* us vulnerability reports, and *how long* we ask security | ||
| researchers to wait before publicly disclosing vulnerabilities. | ||
|
|
||
| If you have other cybersecurity related questions, please contact us at | ||
| [[email protected]](mailto:[email protected]). | ||
| researchers to wait before publicly disclosing vulnerabilities. | ||