From 3f689adf047d0124b0fda446910e4f1cd0972a65 Mon Sep 17 00:00:00 2001
From: Sebastian Bezold <sebastian.bezold@mercedes-benz.com>
Date: Thu, 7 Dec 2023 08:26:42 +0100
Subject: [PATCH] chore: use new SECURITY.md template (#891)

* chore: use new SECURITY.md template

* fix markdown errors

---------

Co-authored-by: Paul Latzelsperger <paul.latzelsperger@beardyinc.com>
---
 SECURITY.md | 18 +++++++++++++++---
 1 file changed, 15 insertions(+), 3 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 41745e204..837c78256 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -1,5 +1,17 @@
-# Security Policy
+# Reporting a Vulnerability
 
-## Reporting a Vulnerability
+Please do **not** report security vulnerabilities through public GitHub issues.
 
-Please report a found vulnerability here: <https://www.eclipse.org/security/>
+Please report vulnerabilities to this repository via **GitHub security advisories** instead.
+
+How? Inside affected repository → security tab
+
+for contributor:
+→ Report a vulnerability
+
+for committer:
+→ advisories → New draft security advisory
+
+In severe cases, you can also report a found vulnerability via mail or eclipse issue here: <https://www.eclipse.org/security/>
+
+See [Eclipse Foundation Vulnerability Reporting Policy](https://www.eclipse.org/projects/handbook/#vulnerability)