Skip to content

Commit 02fb56a

Browse files
authored
update security workflow (#288)
1 parent 69bad01 commit 02fb56a

File tree

5 files changed

+15
-13
lines changed

5 files changed

+15
-13
lines changed

.github/workflows/sync-security-docs.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ jobs:
3434
- name: Check for changes
3535
id: check-changes
3636
run: |
37-
if git diff --quiet sdk/v0.53/security/; then
37+
if git diff --quiet sdk/latest/security/; then
3838
echo "has_changes=false" >> $GITHUB_OUTPUT
3939
echo "No changes detected"
4040
else
@@ -55,9 +55,9 @@ jobs:
5555
This PR updates the security documentation by syncing content from the [cosmos/security](https://github.com/cosmos/security) repository.
5656
5757
### Updated Pages
58-
- Security and Maintenance Policy (`sdk/v0.53/security/security-policy.mdx`)
59-
- Bug Bounty Program (`sdk/v0.53/security/bug-bounty.mdx`)
60-
- Security Audits (`sdk/v0.53/security/audits.mdx`)
58+
- Security and Maintenance Policy (`sdk/latest/security/security-policy.mdx`)
59+
- Bug Bounty Program (`sdk/latest/security/bug-bounty.mdx`)
60+
- Security Audits (`sdk/latest/security/audits.mdx`)
6161
6262
### Review Checklist
6363
- [ ] Verify content accuracy

scripts/versioning/sync-security-docs.js

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ const __dirname = path.dirname(fileURLToPath(import.meta.url));
1818

1919
const SECURITY_REPO = 'cosmos/security';
2020
const SECURITY_BRANCH = 'main';
21-
const OUTPUT_DIR = path.join(__dirname, '..', '..', 'sdk', 'v0.53', 'security');
21+
const OUTPUT_DIR = path.join(__dirname, '..', '..', 'sdk', 'latest', 'security');
2222

2323
// Fetch content from GitHub
2424
async function fetchFromGitHub(filePath) {
@@ -369,8 +369,8 @@ ${auditsContent}
369369
370370
## Additional Resources
371371
372-
- [Security and Maintenance Policy](./security-policy) - Release and maintenance policy
373-
- [Bug Bounty Program](./bug-bounty) - Report vulnerabilities and earn rewards
372+
- [Security and Maintenance Policy](/sdk/latest/security/security-policy) - Release and maintenance policy
373+
- [Bug Bounty Program](/sdk/latest/security/bug-bounty) - Report vulnerabilities and earn rewards
374374
- [cosmos/security Repository](https://github.com/${SECURITY_REPO}) - Complete security documentation
375375
`;
376376

sdk/latest/security/audits.mdx

Lines changed: 4 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ description: "Security audits and transparency reports for Cosmos Stack componen
66
<Info>
77
This page is auto-generated from the [cosmos/security](https://github.com/cosmos/security) repository.
88

9-
**Last synced:** Feb 23, 2026 | [View all audits](https://github.com/cosmos/security/tree/main/audits)
9+
**Last synced:** Apr 10, 2026 | [View all audits](https://github.com/cosmos/security/tree/main/audits)
1010
</Info>
1111

1212
Cosmos Labs maintains a comprehensive security program for all Cosmos Stack components. This page provides links to third-party security audits and transparency reports.
@@ -36,6 +36,7 @@ Cosmos Labs maintains a comprehensive security program for all Cosmos Stack comp
3636

3737
- [Cosmos Sdk 2019 Final](https://github.com/cosmos/security/blob/main/audits/sdk/cosmos_sdk_2019_final.pdf)
3838
- [Cosmos Sdk V53 Audit Final](https://github.com/cosmos/security/blob/main/audits/sdk/cosmos_sdk_v53_audit_final.pdf)
39+
- [Group Module Audit](https://github.com/cosmos/security/blob/main/audits/sdk/group_module_audit.pdf)
3940

4041
## Transparency Reports
4142

@@ -44,6 +45,6 @@ Cosmos Labs maintains a comprehensive security program for all Cosmos Stack comp
4445

4546
## Additional Resources
4647

47-
- [Security and Maintenance Policy](./security-policy) - Release and maintenance policy
48-
- [Bug Bounty Program](./bug-bounty) - Report vulnerabilities and earn rewards
48+
- [Security and Maintenance Policy](/sdk/latest/security/security-policy) - Release and maintenance policy
49+
- [Bug Bounty Program](/sdk/latest/security/bug-bounty) - Report vulnerabilities and earn rewards
4950
- [cosmos/security Repository](https://github.com/cosmos/security) - Complete security documentation

sdk/latest/security/bug-bounty.mdx

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ description: "Security and maintenance policy documentation for the Cosmos Stack
66
<Info>
77
This content is sourced from the official [Cosmos Security](https://github.com/cosmos/security) repository.
88

9-
**Last sync:** Feb 23, 2026 | [View source](https://github.com/cosmos/security/blob/main/SECURITY.md)
9+
**Last sync:** Apr 10, 2026 | [View source](https://github.com/cosmos/security/blob/main/SECURITY.md)
1010
</Info>
1111

1212
## Introduction
@@ -98,7 +98,8 @@ public disclosure.
9898
This approach aligns with practices
9999
used by other major protocols, such as **Ethereum's Geth** (see
100100
https://geth.ethereum.org/docs/developers/geth-developer/disclosures),
101-
**Bitcoin Core** (see https://bitcoincore.org/en/security-advisories/).
101+
**Bitcoin Core** (see https://bitcoincore.org/en/security-advisories/),
102+
and **Zcash** (see https://z.cash/technology/security-advisories/).
102103

103104
Premature disclosure can place unpatched networks at risk. Silent
104105
remediation allows operators time to upgrade before vulnerability

sdk/latest/security/security-policy.mdx

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ description: "Security and maintenance policy documentation for the Cosmos Stack
66
<Info>
77
This content is sourced from the official [Cosmos Security](https://github.com/cosmos/security) repository.
88

9-
**Last sync:** Feb 23, 2026 | [View source](https://github.com/cosmos/security/blob/main/POLICY.md)
9+
**Last sync:** Apr 10, 2026 | [View source](https://github.com/cosmos/security/blob/main/POLICY.md)
1010
</Info>
1111

1212
## Overview

0 commit comments

Comments
 (0)