diff --git a/SECURITY.md b/SECURITY.md index 3a02de671..0e3b00b9e 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -27,6 +27,8 @@ To report a vulnerability, send an email to [security@goauthentik.io](mailto:se authentik reserves the right to reclassify CVSS as necessary. To determine severity, we will use the CVSS calculator from NVD (https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator). The calculated CVSS score will then be translated into one of the following categories: +| Score | Severity | +| --- | --- | | 0.0 | None | | 0.1 – 3.9 | Low | | 4.0 – 6.9 | Medium | diff --git a/website/developer-docs/releases/index.md b/website/developer-docs/releases/index.md index ff7dadd7d..2a5021c3e 100644 --- a/website/developer-docs/releases/index.md +++ b/website/developer-docs/releases/index.md @@ -124,7 +124,7 @@ If you have any questions or comments about this advisory: Subject: `Notice of upcoming authentik Security releases 2022.10.3 and 2022.11.3` ```markdown -We'll be publishing a security Issue (CVE-2022-xxxxx) and accompanying fix on _date_, 13:00 UTC with the Criticality level High. Fixed versions x, y and z will be released alongside a workaround for previous versions. For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy. +We'll be publishing a security Issue (CVE-2022-xxxxx) and accompanying fix on _date_, 13:00 UTC with the Severity level High. Fixed versions x, y and z will be released alongside a workaround for previous versions. For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy. ```
@@ -134,7 +134,7 @@ We'll be publishing a security Issue (CVE-2022-xxxxx) and accompanying fix on _d```markdown -@everyone We'll be publishing a security Issue (CVE-2022-xxxxx) and accompanying fix on _date_, 13:00 UTC with the Criticality level High. Fixed versions x, y and z will be released alongside a workaround for previous versions. For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy. +@everyone We'll be publishing a security Issue (CVE-2022-xxxxx) and accompanying fix on _date_, 13:00 UTC with the Severity level High. Fixed versions x, y and z will be released alongside a workaround for previous versions. For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy. ```
diff --git a/website/src/css/custom.css b/website/src/css/custom.css index 72fc774d1..65f97ab56 100644 --- a/website/src/css/custom.css +++ b/website/src/css/custom.css @@ -127,6 +127,7 @@ body { } .theme-doc-sidebar-menu hr { margin-top: calc(var(--ifm-hr-margin-vertical) / 2); + margin-right: -0.5rem; } /* Nav header background color on mobile */