docs: Use Github's vulnerability reporting (#432)

* use Github's vulnerability reporting Signed-off-by: Marina Moore <mnm678@gmail.com> * Update docs/SECURITY.md Co-authored-by: Joshua Lock <jlock@vmware.com> Signed-off-by: Marina Moore <mnm678@users.noreply.github.com> Signed-off-by: Marina Moore <mnm678@gmail.com> Signed-off-by: Marina Moore <mnm678@users.noreply.github.com> Co-authored-by: Joshua Lock <jlock@vmware.com>
theupdateframework · Nov 16, 2022 · 00e8129 · 00e8129
1 parent 535756a
commit 00e8129
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/docs/SECURITY.md b/docs/SECURITY.md
@@ -8,7 +8,8 @@ You may report issues for the most recent version of go-tuf. We will not retroac
 
 ## Reporting a Vulnerability
 
-If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via our [vulnerability reporting form](https://forms.gle/ShM4s3mLbUAx5QHo8). At the minimum, the report must contain the following:
+If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via [Github's private reporting feature](https://github.com/theupdateframework/go-tuf/security/advisories/new) (requires being signed in to GitHub). At the minimum, the report must contain the following:
+
 * A description of the issue.
 * A specific version or commit SHA of `go-tuf` where the issue reproduces.
 * Instructions to reproduce the issue.