Responsibilities
The CERT/CC is responsible for clarifying and enforcing our standards of acceptable behavior and will take appropriate and fair corrective action in response to any behavior that the CERT/CC deems inappropriate, threatening, offensive, or harmful.
CERT/CC analysts have the right and responsibility to remove, edit, or reject comments, issues, and other contributions that are not aligned to this Code of Conduct, and will communicate reasons for moderation decisions when appropriate.
Corrective actions to the violations of the VINCE Code-of-Conduct may include: private or public warnings, a temporary ban, or even a permanent ban from the system. The CERT/CC will consider these and other options to encourage a cooperative vulnerability coordination and disclosure process.
Persistent or recurring offenses from multiple members of an organization may result in consequences for the organization as well.
References and other resources
Portions of this document are adapted from
The Contributor Covenant, version 2.0, available at https://www.contributor-covenant.org/version/2/0/code_of_conduct/
- The FLOCON Code of Conduct, available at https://resources.sei.cmu.edu/asset_files/Brochure/2015_015_001_447225.pdf
- The USENIX Event Code of Conduct https://www.usenix.org/conferences/coc
We also recommend VINCE users be familiar with and use bias-free language
- Microsoft's Bias-free communication guidance https://docs.microsoft.com/en-us/style-guide/bias-free-communication
IETF draft Terminology, Power, and Inclusive Language in Internet-Drafts and RFCs https://tools.ietf.org/html/draft-knodel-terminology-03