From 00e8129a6d462d7d06f1374dbfabe76f6c163231 Mon Sep 17 00:00:00 2001
From: Marina Moore <mnm678@users.noreply.github.com>
Date: Wed, 16 Nov 2022 09:37:15 -0500
Subject: [PATCH] docs: Use Github's vulnerability reporting (#432)

* use Github's vulnerability reporting

Signed-off-by: Marina Moore <mnm678@gmail.com>

* Update docs/SECURITY.md

Co-authored-by: Joshua Lock <jlock@vmware.com>
Signed-off-by: Marina Moore <mnm678@users.noreply.github.com>

Signed-off-by: Marina Moore <mnm678@gmail.com>
Signed-off-by: Marina Moore <mnm678@users.noreply.github.com>
Co-authored-by: Joshua Lock <jlock@vmware.com>
---
 docs/SECURITY.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/SECURITY.md b/docs/SECURITY.md
index 8b5859c8..eb26fed7 100644
--- a/docs/SECURITY.md
+++ b/docs/SECURITY.md
@@ -8,7 +8,8 @@ You may report issues for the most recent version of go-tuf. We will not retroac
 
 ## Reporting a Vulnerability
 
-If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via our [vulnerability reporting form](https://forms.gle/ShM4s3mLbUAx5QHo8). At the minimum, the report must contain the following:
+If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via [Github's private reporting feature](https://github.com/theupdateframework/go-tuf/security/advisories/new) (requires being signed in to GitHub). At the minimum, the report must contain the following:
+
 * A description of the issue.
 * A specific version or commit SHA of `go-tuf` where the issue reproduces.
 * Instructions to reproduce the issue.