Security advisories now have multiple types of credits

You can now designate different types of credits to users who contribute to GitHub security advisories.

These new credit types mirror those in the CVE 5.0 schema:

• finder
• reporter
• analyst
• coordinator
• remediation developer
• remediation reviewer
• remediation verifier
• tool
• sponsor
• other

Going forward, GitHub will automatically apply the the reporter credit type to anyone credited after submitting a private vulnerability report and the analyst type to anyone credited after submitting an edit to the global Advisory Database. We've also retroactively applied those labels to previously credited individuals who took those actions.

Further reading:

• Learn more about repository security advisories
• Learn more about privately reporting a vulnerability to a repository owner
• Learn more about the GitHub Advisory Database
• Learn more about community contributions to the GitHub Advisory Database