From cb13106eb040f4e5cff8f26d4fd97889243562e9 Mon Sep 17 00:00:00 2001 From: JiaJia Ji Date: Thu, 25 Apr 2024 11:15:37 +0200 Subject: [PATCH] Update SECURITY.md --- SECURITY.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 6b6917f..15268a0 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -4,7 +4,9 @@ If you think that you have found a security issue, don’t use the bug tracker and don’t publish it publicly. -Instead, all security issues must be reported via 📫 to [security-issue@pimcore.com](mailto:security-issue@pimcore.com). +Instead, all security issues must be reported via a private vulnerability report. + +Please follow the [instructions](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability) to submit a private report. ## Resolving Process @@ -18,4 +20,3 @@ Every submitted security issue is handled with top priority by following these s 6. Patch reviewing 7. Tagging a new release for supported versions 8. Publish security announcement -