Closed ahouseholder closed 2 months ago
Describe the solution you'd like
We have a separate repository https://github.com/CERTCC/vulnerability_disclosure_policy_templates that contains words one might include in a disclosure policy. We could just roll these into the CVD guide and eliminate the need for a separate repository.
Describe alternatives you've considered
Status quo is to leave https://github.com/CERTCC/vulnerability_disclosure_policy_templates alone. Which makes it less likely that folks will ever encounter that content.
The words in the templates were condensed from a disclosure policy survey we did a few years ago.
ahouseholder
commented
2 months ago ahouseholder
commented
2 months ago
Describe the solution you'd like
We have a separate repository https://github.com/CERTCC/vulnerability_disclosure_policy_templates that contains words one might include in a disclosure policy. We could just roll these into the CVD guide and eliminate the need for a separate repository.
Describe alternatives you've considered
Status quo is to leave https://github.com/CERTCC/vulnerability_disclosure_policy_templates alone. Which makes it less likely that folks will ever encounter that content.
The words in the templates were condensed from a disclosure policy survey we did a few years ago.