Editing security policy (#5333)

Security disclosure should not go to the main contact form.
fleetdm · May 6, 2022 · c96f01b · c96f01b
1 parent 8c7d22e
commit c96f01b
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 1 deletion.
diff --git a/SECURITY.md b/SECURITY.md
@@ -2,7 +2,7 @@
 
 ## Reporting a Vulnerability
 
-Please report any vulnerabilities discovered in Fleet products to [fleetdm.com/company/contact](https://fleetdm.com/company/contact).
+Please report any vulnerabilities discovered in Fleet products to security **at** fleetdm.com.
 
 Fleet endeavors to acknowledge and fix any reported vulnerabilities ASAP. Acknowledgement is typically within 1 business day, and patches usually go out within 5 business days (depending on severity and timing).
 

diff --git a/handbook/people.md b/handbook/people.md
@@ -35,6 +35,7 @@ DRIs help us collaborate efficiently by knowing exactly who is responsible and c
 | Publishing release blog post, and promoting releases | Mike Thomas |
 | fleetdm.com | Mike Thomas |
 | Self-service Fleet Premium license dispenser | Mike Thomas |
+| Security disclosure and policy | Guillaume Ross | 
 
 *Luke Heath is backup