added 2 new training videos from CS team

stacyspiva · stacyspiva · commit 33eb5b0b5afd · 2020-06-09T17:01:40.000-07:00
diff --git a/docs/programs/defining-scope.md b/docs/programs/defining-scope.md
@@ -25,7 +25,7 @@ Identifier | How hackers will know that they are at the correct asset that you s
 Eligibility for Submission | Whether you want hackers to submit to reports about this asset. If you select "no", hackers will see the asset on a report form with a red warning and won't be able to submit reports marked for this asset.
 Eligibility for Bounty | Whether you intend on providing bounties for this asset or not. If you have a mixed Bug Bounty - Vulnerability Disclosure program, you'll want to explicitly mark the assets you will or will not pay for. This is also surfaced to hackers on both your team profile and the report submission form.
 [Environmental Score](environmental-score.html) | These metrics determine the [severity](severity.html) of the vulnerability for the asset. You can adjust the severity of each vulnerability submission based on the environment by specifying the maximum impact to Confidentiality, Integrity, or Availability of that asset's data.
-Asset Labels | Add specific labels to the different categories pertaining to the asset. You can add asset labels to these fields: Coding Language, Framework,  Cloud and Infrastructure, Database, Content Management System, Country, Spoken Language, Cryptocurrency. <br><br>The labeled descriptors provide more granular data about the program and the assets associated with it. This helps with matching the right hackers to your program. 
+Asset Labels | Add specific labels to the different categories pertaining to the asset. You can add asset labels to these fields: Coding Language, Framework,  Cloud and Infrastructure, Database, Content Management System, Country, Spoken Language, Cryptocurrency. <br><br>The labeled descriptors provide more granular data about the program and the assets associated with it. This helps with matching the right hackers to your program.
 Instruction | If you have any detail descriptions or comments on the asset, this field will surface that on both your program profile page and your report submission form.
 
 4. Click **Save**.
@@ -39,3 +39,6 @@ Instruction | If you have any detail descriptions or comments on the asset, thi
 * **Your reports will be tagged by the selected asset.**
   * You can sort through your reports by asset, such as differentiating the reports for your mobile app vs. your web app.
   * Do data analysis per domain - Is it time to switch your marketing site provider, because all your vulnerabilities stem from that area? Is one particular engineering team responsible for 90% of your Cross-Site Scripting vulnerabilities?
+
+### Tutorial Video
+<iframe id="ytplayer" type="text/html" width="640" height="360" src="https://www.youtube-nocookie.com/embed/4gK2_OAmiwI" frameborder="0" allowfullscreen></iframe>
diff --git a/docs/programs/hacker-mediation.md b/docs/programs/hacker-mediation.md
@@ -34,3 +34,6 @@ Requesting hacker mediation triggers the following actions:
 While HackerOne can't guarantee resolution or override a security team's assessment, hacker mediation has been used to successfully bring items to the security teams' attention, resulting in a more favorable outcome for everyone involved.
 
 As a reminder, hacker mediation is a privilege that is reserved for hackers with 200 reputations point and signal ≥ 1. In most cases, HackerOne won't be able to mediate for reports that have been closed for over 3 months. Please respect the guidelines above and only request mediation if it's deemed absolutely necessary.
+
+### Tutorial Video
+<iframe id="ytplayer" type="text/html" width="640" height="360" src="https://www.youtube-nocookie.com/embed/Ie5nuTJrMNA" frameborder="0" allowfullscreen></iframe>
