[EDI] Create a new "Report and fix vulnerabilities" map topic within "How-tos" (#59113)

mchammer01 · isaacmbrown · web-flow · commit fcfec776c6ad · 2026-01-13T11:00:15.000Z
Co-authored-by: Isaac Brown &lt;101839405+isaacmbrown@users.noreply.github.com&gt;
diff --git a/content/code-security/getting-started/index.md b/content/code-security/getting-started/index.md
@@ -16,6 +16,6 @@ children:
   - /dependabot-quickstart-guide
   - /quickstart-for-securing-your-repository
   - /quickstart-for-securing-your-organization
-  - /adding-a-security-policy-to-your-repository
   - /understanding-github-secret-types
 ---
+
diff --git a/content/code-security/how-tos/index.md b/content/code-security/how-tos/index.md
@@ -19,4 +19,5 @@ children:
   - /secure-at-scale
   - /secure-your-supply-chain
   - /maintain-quality-code
+  - /report-and-fix-vulnerabilities
 ---
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/adding-a-security-policy-to-your-repository.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/adding-a-security-policy-to-your-repository.md
@@ -5,16 +5,18 @@ redirect_from:
   - /articles/adding-a-security-policy-to-your-repository
   - /github/managing-security-vulnerabilities/adding-a-security-policy-to-your-repository
   - /github/code-security/security-advisories/adding-a-security-policy-to-your-repository
+  - /code-security/getting-started/adding-a-security-policy-to-your-repository
 versions:
   fpt: '*'
   ghes: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security policies
   - Vulnerabilities
   - Repositories
   - Health
+  - Security advisories
 shortTitle: Add a security policy
 ---
 
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/configuring-private-vulnerability-reporting-for-a-repository.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/configuring-private-vulnerability-reporting-for-a-repository.md
@@ -5,13 +5,14 @@ permissions: '{% data reusables.permissions.security-repo-enable %}'
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
 shortTitle: Configure for a repository
 redirect_from:
   - /code-security/security-advisories/repository-security-advisories/configuring-private-vulnerability-reporting-for-a-repository
+  - /code-security/security-advisories/working-with-repository-security-advisories/configuring-private-vulnerability-reporting-for-a-repository
 ---
 
 ## About privately reporting a security vulnerability
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/index.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/configure-vulnerability-reporting/index.md
@@ -0,0 +1,18 @@
+---
+title: How-tos for reporting and fixing vulnerabilities
+shortTitle: Configure vulnerability reporting
+intro: Learn how to establish security policies and enable private channels for reporting vulnerabilities in your repository.
+versions:
+  fpt: '*'
+  ghes: '*'
+  ghec: '*'
+topics:
+  - Security policies
+  - Vulnerabilities
+  - Repositories
+  - Health
+contentType: how-tos
+children:
+  - adding-a-security-policy-to-your-repository
+  - configuring-private-vulnerability-reporting-for-a-repository
+---
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/adding-a-collaborator-to-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/adding-a-collaborator-to-a-repository-security-advisory.md
@@ -9,10 +9,11 @@ redirect_from:
   - /code-security/security-advisories/adding-a-collaborator-to-a-security-advisory
   - /code-security/repository-security-advisories/adding-a-collaborator-to-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/adding-a-collaborator-to-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/adding-a-collaborator-to-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/browsing-security-advisories-in-the-github-advisory-database.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/browsing-security-advisories-in-the-github-advisory-database.md
@@ -1,6 +1,6 @@
 ---
 title: Browsing security advisories in the GitHub Advisory Database
-intro: 'You can browse the {% data variables.product.prodname_advisory_database %} to find CVEs and {% data variables.product.prodname_dotcom %}-originated advisories affecting the open source world.'
+intro: You can browse the {% data variables.product.prodname_advisory_database %} to find CVEs and {% data variables.product.prodname_dotcom %}-originated advisories affecting the open source world.
 shortTitle: Browse Advisory Database
 permissions: '{% data reusables.permissions.global-security-advisories-browse %}'
 redirect_from:
@@ -10,11 +10,12 @@ redirect_from:
   - /code-security/dependabot/dependabot-alerts/browsing-security-vulnerabilities-in-the-github-advisory-database
   - /code-security/dependabot/dependabot-alerts/browsing-security-advisories-in-the-github-advisory-database
   - /code-security/security-advisories/global-security-advisories/browsing-security-advisories-in-the-github-advisory-database
+  - /code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/browsing-security-advisories-in-the-github-advisory-database
 versions:
   fpt: '*'
   ghec: '*'
   ghes: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Alerts
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/creating-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/creating-a-repository-security-advisory.md
@@ -9,14 +9,15 @@ redirect_from:
   - /code-security/security-advisories/creating-a-security-advisory
   - /code-security/repository-security-advisories/creating-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/creating-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/creating-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
-shortTitle: Create repository advisories
+shortTitle: Create repository advisory
 ---
 
 {% data reusables.security-advisory.security-researcher-cannot-create-advisory %}
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/deleting-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/deleting-a-repository-security-advisory.md
@@ -1,17 +1,18 @@
 ---
 title: Deleting a repository security advisory
 intro: You can delete a repository security advisory that you've published by contacting Support.
-permissions: 'Repository owners, organization owners, security managers, and users with the **admin** role can contact {% data variables.contact.github_support %} to delete a published security advisory.'
+permissions: Repository owners, organization owners, security managers, and users with the **admin** role can contact {% data variables.contact.github_support %} to delete a published security advisory.
 redirect_from:
   - /github/managing-security-vulnerabilities/withdrawing-a-security-advisory
   - /code-security/security-advisories/withdrawing-a-security-advisory
   - /code-security/repository-security-advisories/withdrawing-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/withdrawing-a-repository-security-advisory
   - /code-security/security-advisories/working-with-repository-security-advisories/withdrawing-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/deleting-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-a-repository-security-advisory.md
@@ -7,10 +7,11 @@ redirect_from:
   - /code-security/security-advisories/editing-a-security-advisory
   - /code-security/repository-security-advisories/editing-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/editing-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/editing-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-security-advisories-in-the-github-advisory-database.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-security-advisories-in-the-github-advisory-database.md
@@ -1,17 +1,18 @@
 ---
 title: Editing security advisories in the GitHub Advisory Database
-intro: 'You can submit improvements to any advisory published in the {% data variables.product.prodname_advisory_database %} by making a community contribution.'
+intro: You can submit improvements to any advisory published in the {% data variables.product.prodname_advisory_database %} by making a community contribution.
 permissions: '{% data reusables.permissions.global-security-advisories-edit %}'
 redirect_from:
   - /code-security/security-advisories/editing-security-advisories-in-the-github-advisory-database
   - /code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/editing-security-advisories-in-the-github-advisory-database
   - /code-security/dependabot/dependabot-alerts/editing-security-advisories-in-the-github-advisory-database
   - /code-security/security-advisories/global-security-advisories/editing-security-advisories-in-the-github-advisory-database
+  - /code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/editing-security-advisories-in-the-github-advisory-database
 versions:
   fpt: '*'
   ghec: '*'
   ghes: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Alerts
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/index.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/index.md
@@ -0,0 +1,24 @@
+---
+title: How-tos for fixing vulnerabilities
+shortTitle: Fix vulnerabilities
+intro: Learn how to manage, create, edit, and publish security advisories for your repositories, collaborate on private reports, and navigate or update advisories within the {% data variables.product.prodname_advisory_database %}.
+versions:
+  fpt: '*'
+  ghec: '*'
+  ghes: '*'
+topics:
+  - Vulnerabilities
+  - Repositories
+  - Health
+contentType: how-tos
+children:
+  - managing-privately-reported-security-vulnerabilities
+  - creating-a-repository-security-advisory
+  - publishing-a-repository-security-advisory
+  - adding-a-collaborator-to-a-repository-security-advisory
+  - removing-a-collaborator-from-a-repository-security-advisory
+  - editing-a-repository-security-advisory
+  - deleting-a-repository-security-advisory
+  - browsing-security-advisories-in-the-github-advisory-database
+  - editing-security-advisories-in-the-github-advisory-database
+---
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/managing-privately-reported-security-vulnerabilities.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/managing-privately-reported-security-vulnerabilities.md
@@ -5,13 +5,14 @@ permissions: '{% data reusables.permissions.security-repo-enable %}'
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
 shortTitle: Manage vulnerability reports
 redirect_from:
   - /code-security/security-advisories/guidance-on-reporting-and-writing/managing-privately-reported-security-vulnerabilities
+  - /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/managing-privately-reported-security-vulnerabilities
 ---
 
 {% data reusables.security-advisory.private-vulnerability-reporting-enable %}
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/publishing-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/publishing-a-repository-security-advisory.md
@@ -9,16 +9,17 @@ redirect_from:
   - /code-security/security-advisories/publishing-a-security-advisory
   - /code-security/repository-security-advisories/publishing-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/publishing-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/publishing-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
   - CVEs
   - Repositories
-shortTitle: Publish repository advisories
+shortTitle: Publish repository advisory
 ---
 <!--Marketing-LINK: From /features/security/software-supply-chain page "Publishing a security advisory".-->
 
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/removing-a-collaborator-from-a-repository-security-advisory.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/removing-a-collaborator-from-a-repository-security-advisory.md
@@ -7,10 +7,11 @@ redirect_from:
   - /code-security/security-advisories/removing-a-collaborator-from-a-security-advisory
   - /code-security/repository-security-advisories/removing-a-collaborator-from-a-repository-security-advisory
   - /code-security/security-advisories/repository-security-advisories/removing-a-collaborator-from-a-repository-security-advisory
+  - /code-security/security-advisories/working-with-repository-security-advisories/removing-a-collaborator-from-a-repository-security-advisory
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/index.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/index.md
@@ -0,0 +1,22 @@
+---
+title: How-tos for reporting and fixing vulnerabilities
+shortTitle: Report and fix vulnerabilities
+intro: Learn how to report and fix vulnerabilities on {% data variables.product.github %}.
+versions:
+  fpt: '*'
+  ghes: '*'
+  ghec: '*'
+topics:
+  - Secret Protection
+  - Secret scanning
+  - Code Security
+  - Code scanning
+  - Vulnerabilities
+  - Dependencies
+  - Dependabot
+contentType: how-tos
+children:
+  - configure-vulnerability-reporting
+  - report-a-vulnerability
+  - fix-reported-vulnerabilities
+---
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/evaluating-the-security-settings-of-a-repository.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/evaluating-the-security-settings-of-a-repository.md
@@ -5,13 +5,14 @@ permissions: '{% data reusables.permissions.repository-security-advisory-evaluat
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
 shortTitle: Evaluate repository security
 redirect_from:
   - /code-security/security-advisories/repository-security-advisories/evaluating-the-security-settings-of-a-repository
+  - /code-security/security-advisories/working-with-repository-security-advisories/evaluating-the-security-settings-of-a-repository
 ---
 
 ## About evaluating a repository's security settings
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/index.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/index.md
@@ -0,0 +1,16 @@
+---
+title: How-tos for reporting vulnerabilities
+shortTitle: Report and evaluate
+intro: Learn how to report vulnerabilities and evaluate the security settings of a repository on {% data variables.product.github %}.
+versions:
+  fpt: '*'
+  ghes: '*'
+topics:
+  - Vulnerabilities
+  - Repositories
+  - Health
+contentType: how-tos
+children:
+  - privately-reporting-a-security-vulnerability
+  - evaluating-the-security-settings-of-a-repository
+---
diff --git a/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/privately-reporting-a-security-vulnerability.md b/content/code-security/how-tos/report-and-fix-vulnerabilities/report-a-vulnerability/privately-reporting-a-security-vulnerability.md
@@ -4,14 +4,15 @@ intro: Some public repositories configure security advisories so that anyone can
 versions:
   fpt: '*'
   ghec: '*'
-type: how_to
+contentType: how-tos
 topics:
   - Security advisories
   - Vulnerabilities
 permissions: '**Anyone** can privately report a security vulnerability to repository maintainers.'
-shortTitle: Privately reporting
+shortTitle: Report privately
 redirect_from:
   - /code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability
+  - /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability
 ---
 
 {% data reusables.security-advisory.private-vulnerability-reporting-enable %}
diff --git a/content/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/index.md b/content/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/index.md
diff --git a/content/code-security/security-advisories/index.md b/content/code-security/security-advisories/index.md
@@ -15,5 +15,4 @@ topics:
 children:
   - /working-with-global-security-advisories-from-the-github-advisory-database
   - /working-with-repository-security-advisories
-  - /guidance-on-reporting-and-writing-information-about-vulnerabilities
 ---
diff --git a/content/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/index.md b/content/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/index.md
@@ -13,8 +13,5 @@ topics:
   - Vulnerabilities
   - Repositories
   - CVEs
-children:
-  - /browsing-security-advisories-in-the-github-advisory-database
-  - /editing-security-advisories-in-the-github-advisory-database
 ---
 
diff --git a/content/code-security/security-advisories/working-with-repository-security-advisories/index.md b/content/code-security/security-advisories/working-with-repository-security-advisories/index.md
@@ -17,14 +17,5 @@ topics:
   - CVEs
 children:
   - /permission-levels-for-repository-security-advisories
-  - /configuring-private-vulnerability-reporting-for-a-repository
   - /configuring-private-vulnerability-reporting-for-an-organization
-  - /creating-a-repository-security-advisory
-  - /editing-a-repository-security-advisory
-  - /evaluating-the-security-settings-of-a-repository
-  - /publishing-a-repository-security-advisory
-  - /adding-a-collaborator-to-a-repository-security-advisory
-  - /removing-a-collaborator-from-a-repository-security-advisory
-  - /deleting-a-repository-security-advisory
 ---
-
diff --git a/content/code-security/tutorials/fix-reported-vulnerabilities/write-security-advisories.md b/content/code-security/tutorials/fix-reported-vulnerabilities/write-security-advisories.md
@@ -14,6 +14,7 @@ redirect_from:
   - /code-security/repository-security-advisories/best-practices-for-writing-repository-security-advisories
   - /code-security/security-advisories/guidance-on-reporting-and-writing/best-practices-for-writing-repository-security-advisories
   - /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/best-practices-for-writing-repository-security-advisories
+  - /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities
 ---
 
 {% data reusables.security-advisory.security-researcher-cannot-create-advisory %}
diff --git a/data/learning-tracks/code-security.yml b/data/learning-tracks/code-security.yml
