From 90967868c3d73eefe5d223dc289c2138adfa0f0b Mon Sep 17 00:00:00 2001 From: Vaughn Woerpel Date: Mon, 30 Sep 2024 12:52:24 -0400 Subject: [PATCH 1/2] Update SECURITY.md --- SECURITY.md | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index acd9b45..0f4e066 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,13 +1,11 @@ # Reporting security vulnerabilities - New Relic is committed to the security of our customers and your data. We believe that engaging with security researchers through our coordinated disclosure program is an important means to achieve our security goals. -If you believe you have found a security vulnerability in one of our products or websites, we welcome and greatly appreciate you reporting it to New Relic through our [coordinated disclosure page on HackerOne](https://hackerone.com/newrelic). - -## Coordinated disclosure program +If you believe you have found a security vulnerability in one of our products or websites, we welcome and greatly appreciate you reporting it to New Relic through [our coordinated disclosure page on BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public). -New Relic has partnered with HackerOne to make it as easy as possible for researchers to report security vulnerabilities to us. In recognition of the effort involved in finding these issues, we may provide bounties for eligible reports. +Coordinated disclosure program +New Relic has partnered with [BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public) to make it easy for researchers to report security vulnerabilities to us. In recognition of the effort involved in finding these issues, we may provide bounties for eligible reports. -Please visit our [coordinated disclosure page on HackerOne](https://hackerone.com/newrelic) for full details of our policies and to see previously disclosed reports. +Please visit [our coordinated disclosure page on BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public) for full details of our policies and to see previously disclosed reports. -Please ensure that you're familiar with [our policies](https://hackerone.com/newrelic) before initiating any security testing, and only test against accounts you control. +Please ensure that you're familiar with and follow our BugCrowd policies before initiating any security testing, and only test against permitted accounts you control. From f106bd6b4f80e79e6670657b5afa52c4aa3ecb91 Mon Sep 17 00:00:00 2001 From: Vaughn Woerpel Date: Mon, 30 Sep 2024 12:57:02 -0400 Subject: [PATCH 2/2] Update SECURITY.md --- SECURITY.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 0f4e066..2221c0a 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,9 +1,10 @@ # Reporting security vulnerabilities + New Relic is committed to the security of our customers and your data. We believe that engaging with security researchers through our coordinated disclosure program is an important means to achieve our security goals. If you believe you have found a security vulnerability in one of our products or websites, we welcome and greatly appreciate you reporting it to New Relic through [our coordinated disclosure page on BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public). -Coordinated disclosure program +## Coordinated disclosure program New Relic has partnered with [BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public) to make it easy for researchers to report security vulnerabilities to us. In recognition of the effort involved in finding these issues, we may provide bounties for eligible reports. Please visit [our coordinated disclosure page on BugCrowd](https://bugcrowd.com/newrelic-mbb-og-public) for full details of our policies and to see previously disclosed reports.