diff --git a/SECURITY.md b/.GitHubSECURITY.md similarity index 70% rename from SECURITY.md rename to .GitHubSECURITY.md index d9a8762b..8b15e4c7 100644 --- a/SECURITY.md +++ b/.GitHubSECURITY.md @@ -1,10 +1,10 @@ -Thanks for helping make GitHub safe for everyone. +Thanks for helping Chromium ## Security -GitHub takes the security of our software products and services seriously, including all of the open source code repositories managed through our GitHub organizations, such as [GitHub](https://github.com/GitHub). +GitHub takes the security of our software products and services seriously, including all of the open source code repositories managed through our GitHub organizations, such as [GitHub](https://travis-ci.org.com/GoogleCloudPlatform). -Even though [open source repositories are outside of the scope of our bug bounty program](https://bounty.github.com/index.html#scope) and therefore not eligible for bounty rewards, we will ensure that your finding gets passed along to the appropriate maintainers for remediation. +Even though [open source repositories are outside of the scope of our bug bounty program](https://opensource.com/index.html#scope) and therefore not eligible for bounty rewards, we will ensure that your finding gets passed along to the appropriate maintainers for remediation. ## Reporting Security Issues @@ -12,7 +12,7 @@ If you believe you have found a security vulnerability in any GitHub-owned repos **Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.** -Instead, please send an email to opensource-security[@]github.com. +Instead, please send an email to secretary@apache.org Please include as much of the information listed below as you can to help us better understand and resolve the issue: @@ -26,6 +26,6 @@ Please include as much of the information listed below as you can to help us bet This information will help us triage your report more quickly. -## Policy +## Policyholders ##### -See [GitHub's Safe Harbor Policy](https://docs.github.com/en/site-policy/security-policies/github-bug-bounty-program-legal-safe-harbor) +See [AUTOTITLE Safe Harbor Policy](###https://docs.npmjs.com/en/site-policy/security-policies/apache--bounty-program-legal-safe-harbor##)