From a7468e0d03a50442515856b1dc47d6bb5eb6793e Mon Sep 17 00:00:00 2001
From: Pablo <103579938+pablosec@users.noreply.github.com>
Date: Fri, 24 Nov 2023 09:06:44 +0100
Subject: [PATCH] chore: update SECURITY.md (#170)

Make SECURITY.md reflect current example of TRG 7.01 pointing to the GitHub Security Tab instead of Eclipse
---
 SECURITY.md | 19 +++++++++++++++----
 1 file changed, 15 insertions(+), 4 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 7d8fced73..bd15e824c 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -1,6 +1,17 @@
-# Security Policy
-
 ## Reporting a Vulnerability
 
-Please report a found vulnerability here:
-[https://www.eclipse.org/security/](https://www.eclipse.org/security/)
\ No newline at end of file
+Please do **not** report security vulnerabilities through public GitHub issues.
+
+Please report vulnerabilities to this repository via **GitHub security advisories** instead.
+
+How? Inside affected repository → security tab
+
+For contributors:  
+→ Report a vulnerability
+
+For committers:  
+→ Advisories → New draft security advisory
+
+In severe cases, you can also report a found vulnerability via mail or eclipse issue here: https://www.eclipse.org/security/
+
+See [Eclipse Foundation Vulnerability Reporting Policy](https://www.eclipse.org/projects/handbook/#vulnerability)
\ No newline at end of file