From 38fe74f8c494af1956311fafb0a5ebb77166b446 Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Fri, 4 Oct 2024 08:23:27 -0400 Subject: [PATCH 1/4] added vdp link --- SECURITY.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 75a3b51..36fcee6 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -6,6 +6,8 @@ we will investigate and subsequently address any potential vulnerabilities as quickly as possible. If you discover a potential security issue in this project, please notify AWS/Amazon Security via our -[vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) +[AWS Vulnerability Disclosure Program](https://hackerone.com/aws_vdp) or directly via email to [AWS Security](mailto:aws-security@amazon.com). +For more information please view the +[AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/) Please do *not* create a public GitHub issue in this project. From 50c9d20e947526e91c07b05ce42bb85ab4b359ee Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Fri, 4 Oct 2024 23:11:18 -0400 Subject: [PATCH 2/4] reformatted --- SECURITY.md | 23 ++++++++++++----------- 1 file changed, 12 insertions(+), 11 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 36fcee6..1339e29 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,13 +1,14 @@ ## Reporting Security Issues -We take all security reports seriously. -When we receive such reports, -we will investigate and subsequently address -any potential vulnerabilities as quickly as possible. -If you discover a potential security issue in this project, -please notify AWS/Amazon Security via our -[AWS Vulnerability Disclosure Program](https://hackerone.com/aws_vdp) -or directly via email to [AWS Security](mailto:aws-security@amazon.com). -For more information please view the -[AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/) -Please do *not* create a public GitHub issue in this project. +Amazon Web Services (AWS) is dedicated to the responsible investigation of security vulnerabilities. + +We kindly ask that you **do not** open a public GitHub issue to report security concerns. + +Instead, please use one of the following options: + +- Submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) +- Send your report via [email](mailto:aws-security@amazon.com) + +For more details, visit the [AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/). + +Thank you for working with us to protect our customers! From 060b36c64e1b5dffe1edfb8d6b5f7743b764aa6b Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Mon, 7 Oct 2024 11:20:27 -0400 Subject: [PATCH 3/4] reformatted --- SECURITY.md | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 1339e29..929cbfa 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,14 +1,11 @@ ## Reporting Security Issues -Amazon Web Services (AWS) is dedicated to the responsible investigation of security vulnerabilities. +Amazon Web Services (AWS) is dedicated to the responsible disclosure of security vulnerabilities. We kindly ask that you **do not** open a public GitHub issue to report security concerns. -Instead, please use one of the following options: - -- Submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) -- Send your report via [email](mailto:aws-security@amazon.com) +Instead, please submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) or send your report via [email](mailto:aws-security@amazon.com). For more details, visit the [AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/). -Thank you for working with us to protect our customers! +Thank you in advance for collaborating with us to help protect our customers. From ffa3597ca49400e5f5252b4808e0a2c097688630 Mon Sep 17 00:00:00 2001 From: Tom spot Callaway Date: Mon, 29 Jun 2026 11:21:03 -0400 Subject: [PATCH 4/4] add information text to the org Signed-off-by: Tom spot Callaway --- profile/README.md | 3 +++ 1 file changed, 3 insertions(+) create mode 100644 profile/README.md diff --git a/profile/README.md b/profile/README.md new file mode 100644 index 0000000..2f4448f --- /dev/null +++ b/profile/README.md @@ -0,0 +1,3 @@ +Since its inception, Amazon Web Services (AWS) has been the best place for customers to build and run open source software in the cloud. AWS is proud to support open source projects, foundations, and partners. We believe that open source is good for everyone and we are committed to bringing the value of open source to our customers, and the operational excellence of AWS to open source communities. + +This GitHub organization provides a wide range of open source solutions in repositories. We recommend reviewing the [AWS Well-Architected Framework](https://docs.aws.amazon.com/wellarchitected/latest/framework/welcome.html) and the [AWS Shared Responsibility Model](https://aws.amazon.com/compliance/shared-responsibility-model/) for guidance on building secure, reliable, and efficient workloads when adopting these solutions.