From 6ede1c21629f49c92d4f6f97a69cd007fddc08fe Mon Sep 17 00:00:00 2001
From: Rafael Gonzaga <rafael.nunu@hotmail.com>
Date: Thu, 30 Jun 2022 14:05:54 -0300
Subject: [PATCH] doc: include CVSS mention

PR-URL: https://github.com/nodejs/node/pull/43602
Reviewed-By: Vladimir de Turckheim <vlad2t@hotmail.com>
Reviewed-By: Beth Griggs <bgriggs@redhat.com>
Reviewed-By: Darshan Sen <raisinten@gmail.com>
Reviewed-By: Matteo Collina <matteo.collina@gmail.com>
Reviewed-By: Richard Lau <rlau@redhat.com>
---
 doc/contributing/security-release-process.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/doc/contributing/security-release-process.md b/doc/contributing/security-release-process.md
index 4f19b0ce48d652..605821bad13b77 100644
--- a/doc/contributing/security-release-process.md
+++ b/doc/contributing/security-release-process.md
@@ -42,6 +42,8 @@ The current security stewards are documented in the main Node.js
 * [ ] PR release announcements in [private](https://github.com/nodejs-private/nodejs.org-private):
   * (Use previous PRs as templates. Don't forget to update the site banner and
     the date in the slug so that it will move to the top of the blog list.)
+  * (Consider using a [Vulnerability Score System](https://www.first.org/cvss/calculator/3.1)
+    to identify severity of each report)
   * [ ] pre-release: _**LINK TO PR**_
   * [ ] post-release: _**LINK TO PR**_
     * List vulnerabilities in order of descending severity