From 75f9af8d10c45a3cf9b27bb711e5766ec0497a9b Mon Sep 17 00:00:00 2001
From: Evan Anderson <evan@stacklok.com>
Date: Mon, 5 Aug 2024 06:26:03 -0700
Subject: [PATCH] Apply suggestions from #136

---
 profiles/github/openssf_security_baseline.yaml | 2 +-
 rule-types/github/security_policy.yaml         | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/profiles/github/openssf_security_baseline.yaml b/profiles/github/openssf_security_baseline.yaml
index ce4574a..88106b1 100644
--- a/profiles/github/openssf_security_baseline.yaml
+++ b/profiles/github/openssf_security_baseline.yaml
@@ -46,7 +46,7 @@ repository:
   # Check for an dependency policy entry in the security insights file.
   - type: security_insights_dep_policy
     name: security_insights_dep_policy
-    displayName: "Check for a dependency polcicy in the Security Insights file."
+    displayName: "Check for a dependency policy in the Security Insights file."
     def:
       filename: SECURITY-INSIGHTS.yml
 
diff --git a/rule-types/github/security_policy.yaml b/rule-types/github/security_policy.yaml
index b89d1c2..ef15b61 100644
--- a/rule-types/github/security_policy.yaml
+++ b/rule-types/github/security_policy.yaml
@@ -8,6 +8,9 @@ context:
 description: Raise an alert if a repository is missing a security policy file.
 guidance: |
   Ensure that a repository has a security policy file
+
+  For more details on security policies on GitHub, see
+  https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository
 def:
   in_entity: repository
   rule_schema: