From 89ec5f3d36095c972c8b8f7b611c7957c4601b1c Mon Sep 17 00:00:00 2001
From: Fabien Potencier <fabien.potencier@gmail.com>
Date: Mon, 17 Jul 2017 16:13:22 +0200
Subject: [PATCH] added URL where to ask for a CVE identifier

---
 contributing/code/security.rst | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/contributing/code/security.rst b/contributing/code/security.rst
index 20b9f362c0a..70ed875593e 100644
--- a/contributing/code/security.rst
+++ b/contributing/code/security.rst
@@ -21,7 +21,7 @@ confirmed, the core-team works on a solution following these steps:
 
 #. Send an acknowledgement to the reporter;
 #. Work on a patch;
-#. Get a CVE identifier from mitre.org;
+#. Get a CVE identifier from `mitre.org`_;
 #. Write a security announcement for the official Symfony `blog`_ about the
    vulnerability. This post should contain the following information:
 
@@ -142,3 +142,4 @@ releases, starting from Symfony 1.0.0:
 .. _blog: https://symfony.com/blog/
 .. _Security Advisories: https://symfony.com/blog/category/security-advisories
 .. _`security advisories database`: https://github.com/FriendsOfPHP/security-advisories
+.. _`mitre.org`: https://cveform.mitre.org/