From 20a85c41ccba3c4769b1bcd3737bc802c469f379 Mon Sep 17 00:00:00 2001
From: Renae Metcalf <kmetcalf@cert.org>
Date: Fri, 14 Nov 2025 11:34:32 -0500
Subject: [PATCH 1/3] Update acks page

---
 docs/about/acknowledgements.md | 44 ++++++++++++++++++++++++++++------
 1 file changed, 37 insertions(+), 7 deletions(-)

diff --git a/docs/about/acknowledgements.md b/docs/about/acknowledgements.md
index 174ef80c..8fd27249 100644
--- a/docs/about/acknowledgements.md
+++ b/docs/about/acknowledgements.md
@@ -1,25 +1,55 @@
 # Acknowledgements
 
-The authors would first like to acknowledge the valuable contributions of previous authors who have worked on earlier versions
-of this report: Art Manion, Madison Oliver, and Deana Shick.
+The SSVC team would first like to acknowledge the valuable contributions of
+previous authors who have worked on earlier versions of SSVC: Eric Hatleback,
+Bon Jin Koo, Art Manion, Madison Oliver, Deana Shick, and Jonathan Spring.
 
-The authors thank the [contributors](https://github.com/CERTCC/SSVC/graphs/contributors) to the
-[SSVC project](https://github.com/CERTCC/SSVC) on Github as well as the following individuals for helpful comments on
-prior drafts (listed in alphabetical order):
+SSVC began as a series of papers before we created this site. Earlier versions
+were written by:  
+[1] J. M. Spring, E. Hatleback, A. D. Householder, A. Manion, and D. Shick,
+"Towards Improving CVSS," Software Engineering Institute, Carnegie Mellon
+University, Dec. 2018. [Online]. Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/2018_019_001_538372.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/2018_019_001_538372.pdf)  
+[2] J. M. Spring, E. Hatleback, A. D. Householder, A. Manion, and D. Shick,
+"Prioritizing Vulnerability Response: a Stakeholder-Specific Vulnerability
+Categorization," Software Engineering Institute, Carnegie Mellon University,
+Nov. 2019. [Online]. Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/2019_019_001_636391.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/2019_019_001_636391.pdf)  
+[3] J. M. Spring, E. Hatleback, A. D. Householder, A. Manion, and D. Shick,
+"Prioritizing Vulnerability Response: a Stakeholder-Specific Vulnerability
+Categorization (Version 1.1)," Software Engineering Institute, Carnegie Mellon
+University, Dec. 2020. [Online]. Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/weis20-final6.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/weis20-final6.pdf)  
+[4] J. M. Spring, A. D. Householder, E. Hatleback, A. Manion, M. Oliver,
+V. Sarvepalli, L. Tyzenhaus, and C. Yarbrough,
+"Prioritizing Vulnerability Response: a Stakeholder-Specific Vulnerability
+Categorization (Version 2.0)," Software Engineering Institute, Carnegie Mellon
+University, Apr. 2021. [Online]. Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/2021_019_001_653461.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/2021_019_001_653461.pdf)  
+[5] J. M. Spring, E. Hatleback, A. D. Householder, V. Sarvepalli, L. Tyzenhaus,
+and C. Yarbrough, "Prioritizing Vulnerability Response: a Stakeholder-Specific
+Vulnerability Categorization (SSVC) version 2.1.0-edb6c97," Software
+Engineering Institute, Carnegie Mellon University, Sep. 2023. [Online].
+Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf)
+
+The SSVC team thanks the [contributors](https://github.com/CERTCC/SSVC/graphs/contributors)
+to the [SSVC project](https://github.com/CERTCC/SSVC) on Github as well as the
+following individuals for helpful comments on earlier versions (listed in
+alphabetical order):
 Muhammad Akbar,
 Will Dormann,
 Manish Gaur,
 Ralph Langer,
-David Oxley
+David Oxley,
 Dale Peterson,
+Bernhard Reiter,
+Thomas Schmidt,
 Jeroen van der Ham,
 Michel van Eeten,
 and Sounil Yu.
 
-The authors also thank those others too numerous to name individually who provided comments and feedback, including:
+The SSVC team also thanks those others too numerous to name individually who
+provided comments and feedback, including:
 Attendees at S4, Miami FL 2020;
 Attendees at A Conference on Defense (ACoD), Austin TX 2020;
 Anonymous WEIS reviewers;
 Various staff members and analysts at CERT/CC, CISA, McAfee, and VMWare;
 FIRST CVSS SIG and EPSS SIG members;
+OASIS CSAF TC;
 and others who wish to remain anonymous.

From 8854b265ffb6739eefd0bce4e2dee61509575ff2 Mon Sep 17 00:00:00 2001
From: sei-renae <kmetcalf@cert.org>
Date: Fri, 14 Nov 2025 12:07:26 -0500
Subject: [PATCH 2/3] Update docs/about/acknowledgements.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 docs/about/acknowledgements.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/about/acknowledgements.md b/docs/about/acknowledgements.md
index 8fd27249..2bffb6af 100644
--- a/docs/about/acknowledgements.md
+++ b/docs/about/acknowledgements.md
@@ -29,7 +29,7 @@ Engineering Institute, Carnegie Mellon University, Sep. 2023. [Online].
 Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf)
 
 The SSVC team thanks the [contributors](https://github.com/CERTCC/SSVC/graphs/contributors)
-to the [SSVC project](https://github.com/CERTCC/SSVC) on Github as well as the
+to the [SSVC project](https://github.com/CERTCC/SSVC) on GitHub as well as the
 following individuals for helpful comments on earlier versions (listed in
 alphabetical order):
 Muhammad Akbar,

From 116123b9d747d8a7644d2c4d4422f6c7802dae9f Mon Sep 17 00:00:00 2001
From: sei-renae <kmetcalf@cert.org>
Date: Fri, 14 Nov 2025 12:07:49 -0500
Subject: [PATCH 3/3] Update docs/about/acknowledgements.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 docs/about/acknowledgements.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/about/acknowledgements.md b/docs/about/acknowledgements.md
index 2bffb6af..fd840598 100644
--- a/docs/about/acknowledgements.md
+++ b/docs/about/acknowledgements.md
@@ -26,7 +26,7 @@ University, Apr. 2021. [Online]. Available: [https://github.com/CERTCC/SSVC/blob
 and C. Yarbrough, "Prioritizing Vulnerability Response: a Stakeholder-Specific
 Vulnerability Categorization (SSVC) version 2.1.0-edb6c97," Software
 Engineering Institute, Carnegie Mellon University, Sep. 2023. [Online].
-Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf)
+Available: [https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf](https://github.com/CERTCC/SSVC/blob/main/pdfs/ssvc_2_1_draft.pdf)  
 
 The SSVC team thanks the [contributors](https://github.com/CERTCC/SSVC/graphs/contributors)
 to the [SSVC project](https://github.com/CERTCC/SSVC) on GitHub as well as the