On user and organization pages, security advisory credit is currently lumped in with issue credit. Working on a security advisory generally requires more effort than the average issue. We should call those out more-prominently.
For organization pages, we may want to consider showing more than the last 3 months of security advisories. For user pages, we should go ahead and show all security advisories credited on.
The existing Views used for this on user & organization pages should be filtered to issues-only. Then add displays for the security advisories, and place them on the pages above issue credit.
Issue fork drupalorg-3220873
Show commands
Start within a Git clone of the project using the version control instructions.
Or, if you do not have SSH keys set up on git.drupalcode.org:
Comments
Comment #3
drummThis came up in a security team triage meeting.
Comment #4
drummTo start, let’s show all security advisory credits on user pages, and the last 1 year on organization pages.
Comment #8
B_manDeployed