From b4c1c386a1921421dc774a1ce95faf060731fc1e Mon Sep 17 00:00:00 2001
From: Simone Lindner <external.Simone.Lindner@bosch.com>
Date: Thu, 23 Nov 2023 12:30:55 +0100
Subject: [PATCH] SECURITY.md updated to newer version

---
 SECURITY.md | 17 +++++++++++++++--
 1 file changed, 15 insertions(+), 2 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 1c3f1692..66ae68d8 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -2,5 +2,18 @@
 
 ## Reporting a Vulnerability
 
-Please report a found vulnerability here:
-[https://www.eclipse.org/security/](https://www.eclipse.org/security/)
+Please do **not** report security vulnerabilities through public GitHub issues.
+
+Please report vulnerabilities to this repository via **GitHub security advisories** instead.
+
+__How?__ Inside affected repository --> security tab
+
+for contributor:
+--> Report a vulnerability
+
+for committer:
+--> advisories --> New draft security advisory
+
+In severe cases, you can also report a found vulnerability via mail or eclipse issue here: https://www.eclipse.org/security/
+
+See [Eclipse Foundation Vulnerability Reporting Policy](https://www.eclipse.org/projects/handbook/#vulnerability).
\ No newline at end of file