diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 42f1a086e..e15cd4385 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -6,7 +6,7 @@ Code contributions are welcome! Please commit any pull requests against the `mas We use a translation tool called [Crowdin](https://crowdin.com) to help manage our localization efforts across many different languages. -If you are interested in helping translate the bitwarden mobile app into another language (or make a translation correction), please register an account at Crowdin and join our project here: https://crowdin.com/project/bitwarden-mobile +If you are interested in helping translate the Bitwarden mobile app into another language (or make a translation correction), please register an account at Crowdin and join our project here: https://crowdin.com/project/bitwarden-mobile If the language that you are interested in translating is not already listed, create a new account on Crowdin, join the project, and contact the project owner (https://crowdin.com/mail/compose/kspearrin). diff --git a/SECURITY.md b/SECURITY.md index 3564ea7b0..ef94f0b49 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,4 +1,4 @@ -bitwarden believes that working with security researchers across the globe is crucial to keeping our +Bitwarden believes that working with security researchers across the globe is crucial to keeping our users safe. If you believe you've found a security issue in our product or service, we encourage you to notify us. We welcome working with you to resolve the issue promptly. Thanks in advance! @@ -16,7 +16,7 @@ notify us. We welcome working with you to resolve the issue promptly. Thanks in # In-scope -- Security issues in any current release of bitwarden. This includes the web vault, browser extension, +- Security issues in any current release of Bitwarden. This includes the web vault, browser extension, and mobile apps (iOS and Android). Product downloads are available at https://bitwarden.com. Source code is available at https://github.com/bitwarden. @@ -24,14 +24,14 @@ notify us. We welcome working with you to resolve the issue promptly. Thanks in The following bug classes are out-of scope: -- Bugs that are already reported on any of bitwarden's issue trackers (https://github.com/bitwarden), +- Bugs that are already reported on any of Bitwarden's issue trackers (https://github.com/bitwarden), or that we already know of. Note that some of our issue tracking is private. - Issues in an upstream software dependency (ex: Xamarin, ASP.NET) which are already reported to the upstream maintainer. - Attacks requiring physical access to a user's device. - Self-XSS -- Issues related to software or protocols not under bitwarden's control -- Vulnerabilities in outdated versions of bitwarden +- Issues related to software or protocols not under Bitwarden's control +- Vulnerabilities in outdated versions of Bitwarden - Missing security best practices that do not directly lead to a vulnerability - Issues that do not have any impact on the general public @@ -39,7 +39,7 @@ While researching, we'd like to ask you to refrain from: - Denial of service - Spamming -- Social engineering (including phishing) of bitwarden staff or contractors -- Any physical attempts against bitwarden property or data centers +- Social engineering (including phishing) of Bitwarden staff or contractors +- Any physical attempts against Bitwarden property or data centers -Thank you for helping keep bitwarden and our users safe! +Thank you for helping keep Bitwarden and our users safe!