chore:Updating security.md (argoproj#1588)

Signed-off-by: Henrik Blixt <[email protected]> Signed-off-by: Julie Vogelman <[email protected]>
juliev0 · Feb 3, 2022 · 2563de3 · 2563de3
1 parent 1750197
commit 2563de3
Showing 1 changed file with 13 additions and 6 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -1,15 +1,22 @@
-# Security 
+# Security policy for Argo Events 
 
-## Reporting Vulnerabilities
+## Reporting a Vulnerability
 
-Please report security vulnerabilities by e-mailing:
+If you find a security related bug in Argo Events, we kindly ask you for responsible
+disclosure and for giving us appropriate time to react, analyze and develop a
+fix to mitigate the found security vulnerability.
 
-* [[email protected]](mailto:[email protected])
-* [[email protected]](mailto:[email protected])
+Please report vulnerabilities by e-mail to the following address: 
+
+* [email protected]
+
+All vulnerabilites and associated information will be treated with full confidentiality. 
 
 ## Public Disclosure
 
-Security vulnerabilities will be disclosed via [release notes](docs/releasing.md).
+Security vulnerabilities will be disclosed via [release notes](docs/releasing.md) and using the
+[GitHub Security Advisories](https://github.com/argoproj/argo-events/security/advisories)
+feature to keep our community well informed, and will credit you for your findings (unless you prefer to stay anonymous, of course).
 
 ## Vulnerability Scanning