You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: SECURITY.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -15,7 +15,7 @@ If you believe you have found a security vulnerability in any Inditex repository
15
15
> [!CAUTION]
16
16
> Do not file public issues on GitHub for security vulnerabilities
17
17
18
-
* Let us know by submitting the finding through our [dedicated email address](mailto:vuln.disclosure@inditex.com) as soon as possible, upon discovery of a potential security issue.
18
+
* Let us know by submitting the finding through our [disclosure submission program](https://vdp.inditex.com) as soon as possible, upon discovery of a potential security issue.
19
19
* Once we've assessed your report, we will create a GitHub "security advisory", which will allow the reporter and Inditex team to work on the issue in a confidential manner. We will invite you as a collaborator to the advisory and any needed trusted persons.
20
20
* That "security advisory" will also allow us to have a temporary private fork, to work on the fix in confidentiality.
21
21
* Once a fix is ready, we will include the fix in our next release and mark that release as a security release.
0 commit comments