From 31233b20640060ad57afb2e8dbeb417900f4e22f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tobias=20Nie=C3=9Fen?= Date: Mon, 21 Nov 2022 15:25:43 +0100 Subject: [PATCH] doc: fix typo in threat model Refs: https://github.com/nodejs/node/pull/45223 PR-URL: https://github.com/nodejs/node/pull/45558 Reviewed-By: Harshitha K P Reviewed-By: Darshan Sen Reviewed-By: Colin Ihrig Reviewed-By: Richard Lau --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 3930a342df2c5d..0ab2b4a3cac119 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -147,7 +147,7 @@ the community they pose. #### Missing Cryptographic Step (CWE-325) * Node.js provides APIs to encrypt data. Bugs that would allow an attacker - to get the orginal data without requiring the encryption key are + to get the original data without requiring the decryption key are considered vulnerabilities. #### External Control of System or Configuration Setting (CWE-15)