1/13/26 1 release branch (#3817)

* #3816 News article & Archive item @ 12/10/25 board minutes summary

* #3815 Add 5 new CNAs + Update 2 CNA's info

Author: rroberge

src/assets/data/CNAsList.json

@@ -809,7 +809,7 @@
     "shortName": "Axis",
     "cnaID": "CNA-2021-0014",
     "organizationName": "Axis Communications AB",
-    "scope": "All products of Axis Communications AB and 2N including end-of-life/end-of-service products.",
+    "scope": "All products of Axis Communications AB including end-of-life/end-of-service products.",
     "contact": [
       {
         "email": [
@@ -17955,7 +17955,7 @@
     "shortName": "Canon_EMEA",
     "cnaID": "CNA-2023-0061",
     "organizationName": "Canon EMEA",
-    "scope": "Products, services, and solutions developed by Canon EMEA, Canon USA Inc., and those from Canon Production Printing, IRIS, NT-ware, Onyx Graphics Inc., and Therefore Corporation, which are not under the Canon Brand.",
+    "scope": "Products, services, and solutions developed by Canon EMEA, Canon USA Inc., and those from IRIS, NT-ware, Onyx Graphics Inc., and Therefore Corporation, which are not under the Canon Brand.",
     "contact": [
       {
         "email": [
@@ -27852,5 +27852,286 @@
       ]
     },
     "country": "USA"
+  },
+  {
+    "shortName": "Hackrate",
+    "cnaID": "CNA-2026-0001",
+    "organizationName": "Hackrate Kft.",
+    "scope": "Vulnerabilities that are discovered, validated, and coordinated through the Hackrate Ethical Hacking Platform, including: software, web applications, APIs, and cloud services; vulnerabilities validated and triaged by our internal security team; and findings disclosed under our coordination that are not in another CNA’s scope.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "cve-coordination@hckrt.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://hckrt.com/vdp/disclosure-guidelines"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.hckrt.com/hacktivity"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "type": [
+        "Bug Bounty Provider"
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "Hungary"
+  },
+  {
+    "shortName": "NIBEGroup",
+    "cnaID": "CNA-2026-0002",
+    "organizationName": "NIBE Group",
+    "scope": "Products, services, and solutions developed or sold by NIBE Industrier AB or any of its subsidiaries; open-source projects owned by NIBE Industrier AB or any of its subsidiaries; vulnerabilities in third-party products used by NIBE Industrier AB or any of its subsidiaries which are outside the scope of another CNA; and subsidiaries of NIBE Industrier AB are listed on <a href='https://www.nibe.com' target='_blank'>https://www.nibe.com</a>.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "vulnerability@nibegroup.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://vdp.nibegroup.com"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://vdp.nibegroup.com"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "type": [
+        "Vendor"
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "Sweden"
+  },
+  {
+    "shortName": "Vantive",
+    "cnaID": "CNA-2026-0003",
+    "organizationName": "Vantive",
+    "scope": "Vantive’s commercially available products only.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "global.corp.product.security@vantive.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.vantive.com/contact-support/security-updates"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.vantive.com/contact-support/security-updates"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "type": [
+        "Vendor"
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "USA"
+  },
+  {
+    "shortName": "ByteDance",
+    "cnaID": "CNA-2026-0004",
+    "organizationName": "ByteDance, Ltd.",
+    "scope": "ByteDance issues only.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "src@bytedance.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://bytedance.larkoffice.com/docx/DmandP3o9oEQBdx0fkycqMHNnPd"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://src.bytedance.com/announcement"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Vendor",
+        "Open Source"
+      ]
+    },
+    "country": "China"
+  },
+  {
+    "shortName": "Nintendo",
+    "cnaID": "CNA-2026-0004",
+    "organizationName": "Nintendo Co., Ltd.",
+    "scope": "System vulnerabilities regarding the Nintendo Switch 2, Nintendo Switch, Nintendo Switch Lite, and vulnerabilities regarding Nintendo Switch 2 and Nintendo Switch applications for which Nintendo is the publisher worldwide.",
+    "contact": [
+      {
+        "email": [],
+        "contact": [
+          {
+            "label": "Nintendo HackerOne page",
+            "url": "https://hackerone.com/nintendo"
+          }
+        ],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.nintendo.com/jp/security-advisories/en/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.nintendo.com/jp/security-advisories/en/"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "jpcert",
+        "organizationName": "JPCERT/CC"
+      },
+      "type": [
+        "Vendor"
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "Japan"
   }
 ]

src/assets/data/boardMeetings.json

@@ -1,5 +1,9 @@
 {
   "2025": [
+    {
+      "name": "December 10, 2025 - teleconference",
+      "path": "msg00307.html"
+    },
     {
       "name": "November 12, 2025 - teleconference",
       "path": "msg00306.html"

src/assets/data/metrics.json

@@ -1167,6 +1167,59 @@
     }
   ],
   "cnasAddedByYear": [
+    {
+      "year": "2026",
+      "data": [
+        {
+          "month": "January",
+          "value": "5"
+        },
+        {
+          "month": "February",
+          "value": "TBA"
+        },
+        {
+          "month": "March",
+          "value": "TBA"
+        },
+        {
+          "month": "April",
+          "value": "TBA"
+        },
+        {
+          "month": "May",
+          "value": "TBA"
+        },
+        {
+          "month": "June",
+          "value": "TBA"
+        },
+        {
+          "month": "July",
+          "value": "TBA"
+        },
+        {
+          "month": "August",
+          "value": "TBA"
+        },
+        {
+          "month": "September",
+          "value": "TBA"
+        },
+        {
+          "month": "October",
+          "value": "TBA"
+        },
+        {
+          "month": "November",
+          "value": "TBA"
+        },
+        {
+          "month": "December",
+          "value": "TBA"
+        }
+      ]
+    },
     {
       "year": "2025",
       "data": [