From 95f272f43dfba54969634f823f22b2caf2354bcc Mon Sep 17 00:00:00 2001 From: JiaJia Ji Date: Tue, 30 Apr 2024 11:51:58 +0200 Subject: [PATCH] Update SECURITY.md (#180) --- SECURITY.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 6b6917f5c..15268a005 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -4,7 +4,9 @@ If you think that you have found a security issue, don’t use the bug tracker and don’t publish it publicly. -Instead, all security issues must be reported via 📫 to [security-issue@pimcore.com](mailto:security-issue@pimcore.com). +Instead, all security issues must be reported via a private vulnerability report. + +Please follow the [instructions](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability) to submit a private report. ## Resolving Process @@ -18,4 +20,3 @@ Every submitted security issue is handled with top priority by following these s 6. Patch reviewing 7. Tagging a new release for supported versions 8. Publish security announcement -