From c89c580c22d2f0026df86dee50d5198681f9b274 Mon Sep 17 00:00:00 2001
From: mc <42146119+mchammer01@users.noreply.github.com>
Date: Mon, 17 Jul 2023 09:25:33 +0200
Subject: [PATCH] Document name of temp private fork when collaborating with
 others to resolve a repository security vulnerability (#38843)

Co-authored-by: Robert Thorpe II <rthorpeii@github.com>
Co-authored-by: Anne-Marie <102995847+am-stead@users.noreply.github.com>
---
 ...-to-resolve-a-repository-security-vulnerability.md | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/content/code-security/security-advisories/repository-security-advisories/collaborating-in-a-temporary-private-fork-to-resolve-a-repository-security-vulnerability.md b/content/code-security/security-advisories/repository-security-advisories/collaborating-in-a-temporary-private-fork-to-resolve-a-repository-security-vulnerability.md
index 528c22ab59..2a428a2f83 100644
--- a/content/code-security/security-advisories/repository-security-advisories/collaborating-in-a-temporary-private-fork-to-resolve-a-repository-security-vulnerability.md
+++ b/content/code-security/security-advisories/repository-security-advisories/collaborating-in-a-temporary-private-fork-to-resolve-a-repository-security-vulnerability.md
@@ -38,7 +38,16 @@ To keep information about vulnerabilities secure, integrations, including CI, ca
 
    ![Screenshot of the "Collaborate on a patch in private" area of the form. A button, labeled "Start a temporary private fork", is outlined in dark orange.](/assets/images/help/security/new-temporary-private-fork-button.png)
 
-A private fork of the repository is created and shown on the advisory page.
+   A private fork of the repository is created and shown on the advisory page.
+
+   The naming convention for the private fork is very similar to the convention used for advisories in the {% data variables.product.prodname_advisory_database %} and follows this format: `repo-ghsa-xxxx-xxxx-xxxx`, where:
+    - `repo` is the name of the repository. To stay under the 100 character limit on repository names, we truncate the original repository's name to 80 characters.
+    - `xxxx-xxxx-xxxx` is the unique identifier of the draft security advisory:
+       - `x` is a letter or a number from the following set: `23456789cfghjmpqrvwx`.
+       - The numbers and letters are randomly assigned.
+       - All letters and numbers are lowercase.
+
+For example, if you create a temporary private fork in a repository called `octocat-repo`, and the automatically generated ID for the draft advisory is `GHSA-x854-cvjg-vx26`, the temporary fork will be called `octocat-repo-ghsa-x854-cvjg-vx26`.
 
 ## Adding collaborators to a temporary private fork