From b2915afbdee87809e119749c14df47d6723dd1a6 Mon Sep 17 00:00:00 2001 From: James Siri <22601145+jamesiri@users.noreply.github.com> Date: Wed, 28 Oct 2020 12:24:07 -0700 Subject: [PATCH 1/7] Updating branch name Removing master and replacing with main. --- CONTRIBUTING.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 3088637..8ac3edd 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -27,7 +27,7 @@ reported the issue. Please try to include as much information as you can. Detail ## Contributing via Pull Requests Contributions via pull requests are much appreciated. Before sending us a pull request, please ensure that: -1. You are working against the latest source on the *master* branch. +1. You are working against the latest source on the *main* branch. 2. You check existing open, and recently merged, pull requests to make sure someone else hasn't addressed the problem already. 3. You open an issue to discuss any significant work - we would hate for your time to be wasted. From 0e396f0a432db38e3e89062656001c17ec9c1ad3 Mon Sep 17 00:00:00 2001 From: jedigal <119687809+jedigal@users.noreply.github.com> Date: Tue, 21 Feb 2023 14:26:56 -0500 Subject: [PATCH 2/7] Update SECURITY.md Updating security.md file with new version based on feedback from stakeholders during security.txt/md project. --- SECURITY.md | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 9d3b4f2..7b7c45b 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,5 +1,3 @@ -## Reporting a Vulnerability +## Reporting Security Issues -If you discover a potential security issue in this project we ask that you notify AWS/Amazon Security -via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) or directly via email to aws-security@amazon.com. -Please do **not** create a public GitHub issue. +We take all security reports seriously. When we receive such reports, we will investigate and subsequently address any potential vulnerabilities as quickly as possible. If you discover a potential security issue in this project, please notify AWS/Amazon Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) or directly via email to [AWS Security](mailto:aws-security@amazon.com). Please do *not* create a public GitHub issue in this project. From 0b296c8982d690d552d3a6f6ee512862b0934711 Mon Sep 17 00:00:00 2001 From: jedigal <119687809+jedigal@users.noreply.github.com> Date: Fri, 24 Feb 2023 16:07:32 -0500 Subject: [PATCH 3/7] Update SECURITY.md --- SECURITY.md | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 7b7c45b..75a3b51 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,3 +1,11 @@ ## Reporting Security Issues -We take all security reports seriously. When we receive such reports, we will investigate and subsequently address any potential vulnerabilities as quickly as possible. If you discover a potential security issue in this project, please notify AWS/Amazon Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) or directly via email to [AWS Security](mailto:aws-security@amazon.com). Please do *not* create a public GitHub issue in this project. +We take all security reports seriously. +When we receive such reports, +we will investigate and subsequently address +any potential vulnerabilities as quickly as possible. +If you discover a potential security issue in this project, +please notify AWS/Amazon Security via our +[vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) +or directly via email to [AWS Security](mailto:aws-security@amazon.com). +Please do *not* create a public GitHub issue in this project. From 38fe74f8c494af1956311fafb0a5ebb77166b446 Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Fri, 4 Oct 2024 08:23:27 -0400 Subject: [PATCH 4/7] added vdp link --- SECURITY.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 75a3b51..36fcee6 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -6,6 +6,8 @@ we will investigate and subsequently address any potential vulnerabilities as quickly as possible. If you discover a potential security issue in this project, please notify AWS/Amazon Security via our -[vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/) +[AWS Vulnerability Disclosure Program](https://hackerone.com/aws_vdp) or directly via email to [AWS Security](mailto:aws-security@amazon.com). +For more information please view the +[AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/) Please do *not* create a public GitHub issue in this project. From 50c9d20e947526e91c07b05ce42bb85ab4b359ee Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Fri, 4 Oct 2024 23:11:18 -0400 Subject: [PATCH 5/7] reformatted --- SECURITY.md | 23 ++++++++++++----------- 1 file changed, 12 insertions(+), 11 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 36fcee6..1339e29 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,13 +1,14 @@ ## Reporting Security Issues -We take all security reports seriously. -When we receive such reports, -we will investigate and subsequently address -any potential vulnerabilities as quickly as possible. -If you discover a potential security issue in this project, -please notify AWS/Amazon Security via our -[AWS Vulnerability Disclosure Program](https://hackerone.com/aws_vdp) -or directly via email to [AWS Security](mailto:aws-security@amazon.com). -For more information please view the -[AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/) -Please do *not* create a public GitHub issue in this project. +Amazon Web Services (AWS) is dedicated to the responsible investigation of security vulnerabilities. + +We kindly ask that you **do not** open a public GitHub issue to report security concerns. + +Instead, please use one of the following options: + +- Submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) +- Send your report via [email](mailto:aws-security@amazon.com) + +For more details, visit the [AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/). + +Thank you for working with us to protect our customers! From 060b36c64e1b5dffe1edfb8d6b5f7743b764aa6b Mon Sep 17 00:00:00 2001 From: Ryan Nolette Date: Mon, 7 Oct 2024 11:20:27 -0400 Subject: [PATCH 6/7] reformatted --- SECURITY.md | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 1339e29..929cbfa 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,14 +1,11 @@ ## Reporting Security Issues -Amazon Web Services (AWS) is dedicated to the responsible investigation of security vulnerabilities. +Amazon Web Services (AWS) is dedicated to the responsible disclosure of security vulnerabilities. We kindly ask that you **do not** open a public GitHub issue to report security concerns. -Instead, please use one of the following options: - -- Submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) -- Send your report via [email](mailto:aws-security@amazon.com) +Instead, please submit the issue to the AWS Vulnerability Disclosure Program via [HackerOne](https://hackerone.com/aws_vdp) or send your report via [email](mailto:aws-security@amazon.com). For more details, visit the [AWS Vulnerability Reporting Page](http://aws.amazon.com/security/vulnerability-reporting/). -Thank you for working with us to protect our customers! +Thank you in advance for collaborating with us to help protect our customers. From 7daf33ba2307f1b8cb9ddc1b2119cfed384d3ea4 Mon Sep 17 00:00:00 2001 From: "Amazon OSPO [bot]" <207087715+amazon-ospo-bot@users.noreply.github.com> Date: Fri, 7 Nov 2025 13:25:56 -0800 Subject: [PATCH 7/7] Create README.md --- profile/README.md | 3 +++ 1 file changed, 3 insertions(+) create mode 100644 profile/README.md diff --git a/profile/README.md b/profile/README.md new file mode 100644 index 0000000..03c747c --- /dev/null +++ b/profile/README.md @@ -0,0 +1,3 @@ +AWS code samples are example code that demonstrates practical implementations of AWS services for specific use cases and scenarios. + +These application solutions are not supported products in their own right, but educational examples to help our customers use our products for their applications. As our customer, any applications you integrate these examples into should be thoroughly tested, secured, and optimized according to your business's security standards & policies before deploying to production or handling production workloads.