From 3140145cff10e513f8dbb5c791c53e1930f6fcc0 Mon Sep 17 00:00:00 2001
From: JiaJia Ji <kingjia90@gmail.com>
Date: Thu, 25 Apr 2024 10:48:06 +0200
Subject: [PATCH] Update SECURITY.md

---
 SECURITY.md | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 53173b7..0b2b2ea 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -2,9 +2,11 @@
 
 ## Reporting a Vulnerability
 
-If you think that you have found a security issue,
-don’t use the bug tracker and don’t publish it publicly.
-Instead, all security issues must be reported via 📫 to [security-issue@pimcore.com](mailto:security-issue@pimcore.com).
+If you think that you have found a security issue, 
+don’t use the bug tracker and don’t publish it publicly. 
+Instead, all security issues must be reported via a private vulnerability report.
+
+Please follow the [instructions](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability) to submit a private report.
 
 
 ## Resolving Process
@@ -17,4 +19,5 @@ Every submitted security issue is handled with top priority by following these s
 5. Get a CVE identification number (may be done by the reporter or a security service provider)
 6. Patch reviewing
 7. Tagging a new release for supported versions
-8. Publish security announcement
\ No newline at end of file
+8. Publish security announcement
+