{"meta":{"title":"How-tos for fixing vulnerabilities","intro":"Learn how to manage, create, edit, and publish security advisories for your repositories, collaborate on private reports, and navigate or update advisories within the GitHub Advisory Database.","product":"Security and code quality","breadcrumbs":[{"href":"/en/code-security","title":"Security and code quality"},{"href":"/en/code-security/how-tos","title":"How-tos"},{"href":"/en/code-security/how-tos/report-and-fix-vulnerabilities","title":"Report and fix vulnerabilities"},{"href":"/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities","title":"Fix vulnerabilities"}],"documentType":"subcategory"},"body":"# How-tos for fixing vulnerabilities\n\nLearn how to manage, create, edit, and publish security advisories for your repositories, collaborate on private reports, and navigate or update advisories within the GitHub Advisory Database.\n\n## Links\n\n* [Managing privately reported security vulnerabilities](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/managing-privately-reported-security-vulnerabilities)\n\n  Repository maintainers can manage security vulnerabilities that have been privately reported to them by security researchers for repositories where private vulnerability reporting is enabled.\n\n* [Creating a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/creating-a-repository-security-advisory)\n\n  You can create a draft security advisory to privately discuss and fix a security vulnerability in your open source project.\n\n* [Publishing a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/publishing-a-repository-security-advisory)\n\n  You can publish a security advisory to alert your community about a security vulnerability in your project.\n\n* [Adding a collaborator to a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/adding-a-collaborator-to-a-repository-security-advisory)\n\n  Add other users or teams to collaborate on a security advisory with you.\n\n* [Removing a collaborator from a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/removing-a-collaborator-from-a-repository-security-advisory)\n\n  When you remove a collaborator from a repository security advisory, they lose read and write access to the security advisory's discussion and metadata.\n\n* [Editing a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-a-repository-security-advisory)\n\n  You can edit the metadata and description for a repository security advisory if you need to update details or correct errors.\n\n* [Deleting a repository security advisory](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/deleting-a-repository-security-advisory)\n\n  You can delete a repository security advisory that you've published by contacting Support.\n\n* [Browsing security advisories in the GitHub Advisory Database](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/browsing-security-advisories-in-the-github-advisory-database)\n\n  You can browse the GitHub Advisory Database to find CVEs and GitHub-originated advisories affecting the open source world.\n\n* [Editing security advisories in the GitHub Advisory Database](/en/code-security/how-tos/report-and-fix-vulnerabilities/fix-reported-vulnerabilities/editing-security-advisories-in-the-github-advisory-database)\n\n  Improve advisories published in the GitHub Advisory Database by making community contributions."}