update security workflow (#288)

Author: evanorti

.github/workflows/sync-security-docs.yml

@@ -34,7 +34,7 @@ jobs:
       - name: Check for changes
         id: check-changes
         run: |
-          if git diff --quiet sdk/v0.53/security/; then
+          if git diff --quiet sdk/latest/security/; then
             echo "has_changes=false" >> $GITHUB_OUTPUT
             echo "No changes detected"
           else
@@ -55,9 +55,9 @@ jobs:
             This PR updates the security documentation by syncing content from the [cosmos/security](https://github.com/cosmos/security) repository.
 
             ### Updated Pages
-            - Security and Maintenance Policy (`sdk/v0.53/security/security-policy.mdx`)
-            - Bug Bounty Program (`sdk/v0.53/security/bug-bounty.mdx`)
-            - Security Audits (`sdk/v0.53/security/audits.mdx`)
+            - Security and Maintenance Policy (`sdk/latest/security/security-policy.mdx`)
+            - Bug Bounty Program (`sdk/latest/security/bug-bounty.mdx`)
+            - Security Audits (`sdk/latest/security/audits.mdx`)
 
             ### Review Checklist
             - [ ] Verify content accuracy

scripts/versioning/sync-security-docs.js

@@ -18,7 +18,7 @@ const __dirname = path.dirname(fileURLToPath(import.meta.url));
 
 const SECURITY_REPO = 'cosmos/security';
 const SECURITY_BRANCH = 'main';
-const OUTPUT_DIR = path.join(__dirname, '..', '..', 'sdk', 'v0.53', 'security');
+const OUTPUT_DIR = path.join(__dirname, '..', '..', 'sdk', 'latest', 'security');
 
 // Fetch content from GitHub
 async function fetchFromGitHub(filePath) {
@@ -369,8 +369,8 @@ ${auditsContent}
 
 ## Additional Resources
 
-- [Security and Maintenance Policy](./security-policy) - Release and maintenance policy
-- [Bug Bounty Program](./bug-bounty) - Report vulnerabilities and earn rewards
+- [Security and Maintenance Policy](/sdk/latest/security/security-policy) - Release and maintenance policy
+- [Bug Bounty Program](/sdk/latest/security/bug-bounty) - Report vulnerabilities and earn rewards
 - [cosmos/security Repository](https://github.com/${SECURITY_REPO}) - Complete security documentation
 `;
 

sdk/latest/security/audits.mdx

@@ -6,7 +6,7 @@ description: "Security audits and transparency reports for Cosmos Stack componen
 <Info>
 This page is auto-generated from the [cosmos/security](https://github.com/cosmos/security) repository.
 
-**Last synced:** Feb 23, 2026 | [View all audits](https://github.com/cosmos/security/tree/main/audits)
+**Last synced:** Apr 10, 2026 | [View all audits](https://github.com/cosmos/security/tree/main/audits)
 </Info>
 
 Cosmos Labs maintains a comprehensive security program for all Cosmos Stack components. This page provides links to third-party security audits and transparency reports.
@@ -36,6 +36,7 @@ Cosmos Labs maintains a comprehensive security program for all Cosmos Stack comp
 
 - [Cosmos Sdk 2019 Final](https://github.com/cosmos/security/blob/main/audits/sdk/cosmos_sdk_2019_final.pdf)
 - [Cosmos Sdk V53 Audit Final](https://github.com/cosmos/security/blob/main/audits/sdk/cosmos_sdk_v53_audit_final.pdf)
+- [Group Module Audit](https://github.com/cosmos/security/blob/main/audits/sdk/group_module_audit.pdf)
 
 ## Transparency Reports
 
@@ -44,6 +45,6 @@ Cosmos Labs maintains a comprehensive security program for all Cosmos Stack comp
 
 ## Additional Resources
 
-- [Security and Maintenance Policy](./security-policy) - Release and maintenance policy
-- [Bug Bounty Program](./bug-bounty) - Report vulnerabilities and earn rewards
+- [Security and Maintenance Policy](/sdk/latest/security/security-policy) - Release and maintenance policy
+- [Bug Bounty Program](/sdk/latest/security/bug-bounty) - Report vulnerabilities and earn rewards
 - [cosmos/security Repository](https://github.com/cosmos/security) - Complete security documentation

sdk/latest/security/bug-bounty.mdx

@@ -6,7 +6,7 @@ description: "Security and maintenance policy documentation for the Cosmos Stack
 <Info>
 This content is sourced from the official [Cosmos Security](https://github.com/cosmos/security) repository. 
 
-**Last sync:** Feb 23, 2026 | [View source](https://github.com/cosmos/security/blob/main/SECURITY.md)
+**Last sync:** Apr 10, 2026 | [View source](https://github.com/cosmos/security/blob/main/SECURITY.md)
 </Info>
 
 ## Introduction
@@ -98,7 +98,8 @@ public disclosure.
 This approach aligns with practices
 used by other major protocols, such as **Ethereum's Geth** (see
 https://geth.ethereum.org/docs/developers/geth-developer/disclosures),
-**Bitcoin Core** (see https://bitcoincore.org/en/security-advisories/).
+**Bitcoin Core** (see https://bitcoincore.org/en/security-advisories/),
+and **Zcash** (see https://z.cash/technology/security-advisories/).
 
 Premature disclosure can place unpatched networks at risk. Silent
 remediation allows operators time to upgrade before vulnerability

sdk/latest/security/security-policy.mdx

@@ -6,7 +6,7 @@ description: "Security and maintenance policy documentation for the Cosmos Stack
 <Info>
 This content is sourced from the official [Cosmos Security](https://github.com/cosmos/security) repository. 
 
-**Last sync:** Feb 23, 2026 | [View source](https://github.com/cosmos/security/blob/main/POLICY.md)
+**Last sync:** Apr 10, 2026 | [View source](https://github.com/cosmos/security/blob/main/POLICY.md)
 </Info>
 
 ## Overview