Update security policy (#17522)

* Update security policy * Update security.md Co-authored-by: Dominik Picheta <dominikpicheta@googlemail.com> Co-authored-by: Andreas Rumpf <rumpf_a@web.de> Co-authored-by: Dominik Picheta <dominikpicheta@googlemail.com>
author: Federico Ceratto <federico.ceratto@gmail.com> 2021-03-27 10:36:39 +0100
committer: GitHub <noreply@github.com> 2021-03-27 10:36:39 +0100
commit: 30959e24bd8840f16472d1f621e1a349d9ccae78 (patch)
tree: ad47c1a6eaebf1678721fb5adeb8c6d1080f18d0
parent: a65189a739c59fcc0d7b3f8fdcb2cf8bed432f68 (diff)
download: Nim-30959e24bd8840f16472d1f621e1a349d9ccae78.tar.gz
1 files changed, 7 insertions, 4 deletions
diff --git a/security.md b/security.md
index e8d31b1b9..72a1a3e3d 100644
--- a/security.md
+++ b/security.md
@@ -2,7 +2,10 @@
 
 ## Supported Versions
 
-Security fixes are provided in new releases and bugfix releases.
+Security advisories are published at:
+https://github.com/nim-lang/security/security/advisories?state=published
+
+Security fixes are provided in new releases and in bugfix releases.
 
 We do not backport security fixes to older releases.
 
@@ -10,8 +13,8 @@ We do not backport security fixes to older releases.
 
 ## Reporting a Vulnerability
 
-Please do not report vulnerabilities via GitHub issues.
-
-If you have discovered a vulnerability, it is best to notify us about it via
+If you have discovered a vulnerability, please notify us about it via
 security@nim-lang.org in order to set up a meeting where we can discuss the next
 steps.
+
+Please do not report vulnerabilities via GitHub issues.
author	Federico Ceratto <federico.ceratto@gmail.com>	2021-03-27 10:36:39 +0100
committer	GitHub <noreply@github.com>	2021-03-27 10:36:39 +0100
commit	30959e24bd8840f16472d1f621e1a349d9ccae78 (patch)
tree	ad47c1a6eaebf1678721fb5adeb8c6d1080f18d0
parent	a65189a739c59fcc0d7b3f8fdcb2cf8bed432f68 (diff)
download	Nim-30959e24bd8840f16472d1f621e1a349d9ccae78.tar.gz