From b0b7ee0924b9d7855b30dfcbdb56d8b0fb5f0081 Mon Sep 17 00:00:00 2001 From: msw Date: Fri, 12 Jun 2026 12:26:30 -0700 Subject: [PATCH] Update SECURITY.md Update the security reporting guidelines to include information about Coordinated Vulnerability Disclosure (CVD) and provided links to CVD resources --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 929cbfa..8bf5399 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,6 +1,6 @@ ## Reporting Security Issues -Amazon Web Services (AWS) is dedicated to the responsible disclosure of security vulnerabilities. +Amazon Web Services (AWS) practices industry-standard Coodinated Vulnerability Disclosure (CVD) with the goal of reducing adversary advantage while a security vulnerability is being addressed. The [CERT® Guide to Coordinated Vulnerability Disclosure](https://certcc.github.io/CERT-Guide-to-CVD/tutorials/cvd_in_a_nutshell/) provides information about the CVD process, and outlines tools and practices that can help achieve this goal. We kindly ask that you **do not** open a public GitHub issue to report security concerns.