Skip to content

Commit 1ddd0b5

Browse files
cx-amol-manecx-amol-mane
committed
Update security reporting links and streamline vulnerability reporting instructions
1 parent f62f4ce commit 1ddd0b5

3 files changed

Lines changed: 6 additions & 15 deletions

File tree

.github/ISSUE_TEMPLATE/config.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,8 +7,8 @@ contact_links:
77
url: https://github.com/Checkmarx/checkmarx-kiro-powers/blob/main/checkmarx-power/POWER.md
88
about: Read the full Power documentation and workflows
99
- name: 🔒 Security Vulnerability
10-
url: https://github.com/Checkmarx/checkmarx-kiro-powers/security/advisories/new
11-
about: Report a security vulnerability privately (use this instead of opening an issue)
10+
url: https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/login/
11+
about: Report security vulnerabilities to the Checkmarx One Integrations Team via the Support Portal
1212
- name: 🆘 Checkmarx Support
1313
url: https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/
1414
about: Get help from Checkmarx support team

SECURITY.md

Lines changed: 3 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -11,17 +11,11 @@ Security fixes are provided for the latest `main` branch state.
1111

1212
## Reporting a Vulnerability
1313

14-
Please report vulnerabilities privately. Do **not** open public GitHub issues for
15-
security findings.
14+
Please report vulnerabilities privately to the **Checkmarx One Integrations Team** via the [Checkmarx Support Portal](https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/login/).
1615

17-
Preferred channels:
16+
Do **not** open public GitHub issues for security findings.
1817

19-
1. GitHub private vulnerability report:
20-
- `https://github.com/Checkmarx/checkmarx-kiro-powers/security/advisories/new`
21-
2. Checkmarx Support Portal:
22-
- Report security issues to the **Checkmarx One integrations team** via the [Checkmarx Support Portal](https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/login/)
23-
24-
Use the form in [VULNERABILITY_REPORT.md](VULNERABILITY_REPORT.md) when submitting.
18+
Use the form in [VULNERABILITY_REPORT.md](VULNERABILITY_REPORT.md) when submitting your report.
2519

2620
## What to Include
2721

VULNERABILITY_REPORT.md

Lines changed: 1 addition & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,6 @@
11
# Vulnerability Report Form
22

3-
Submit this form privately via:
4-
5-
- GitHub advisories: `https://github.com/Checkmarx/checkmarx-kiro-powers/security/advisories/new`
6-
- Or via the [Checkmarx Support Portal](https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/login/) (contact the Checkmarx One integrations team)
3+
Submit this form privately via the [Checkmarx Support Portal](https://support.checkmarx.com/CheckmarxCustomerServiceCommunity/s/login/) (contact the Checkmarx One integrations team).
74

85
## Reporter Information
96

0 commit comments

Comments
 (0)