Merge remote-tracking branch 'github/master'HEAD master

author: Tuowen Zhao <ztuowen@gmail.com> 2023-11-04 18:38:46 -0700
committer: Tuowen Zhao <ztuowen@gmail.com> 2023-11-04 18:38:46 -0700
commit: 4d908094fdc2a0c0e9a0a072eba213fab7adef43 (patch)
tree: 7c17e70bcdeebbe96c84d849bdf17882007480d8 /SECURITY.md
parent: 4b0bbc0b263a150eb9a9b59f196914629be06a9b (diff)
parent: 632ed413a9ce62747ded83d7736491b081be4b49 (diff)
download: zsh-master.tar.gz
zsh-master.tar.bz2
zsh-master.zip
1 files changed, 2 insertions, 3 deletions
diff --git a/SECURITY.md b/SECURITY.md
index 7e5c8eed0..ae7458ee2 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -17,8 +17,7 @@ In the near future we will introduce versioning, so expect this section to chang
 
 **Do not submit an issue or pull request**: this might reveal the vulnerability.
 
-Instead, you should email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh).
+Instead, you should email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh),
+or using the link to [privately report a vulnerability with GitHub](https://github.com/ohmyzsh/ohmyzsh/security/advisories/new).
 
 We will deal with the vulnerability privately and submit a patch as soon as possible.
-
-You can also submit your vulnerability report to [huntr.dev](https://huntr.dev/bounties/disclose/?utm_campaign=ohmyzsh%2Fohmyzsh&utm_medium=social&utm_source=github&target=https%3A%2F%2Fgithub.com%2Fohmyzsh%2Fohmyzsh) and see if you can get a bounty reward.
author	Tuowen Zhao <ztuowen@gmail.com>	2023-11-04 18:38:46 -0700
committer	Tuowen Zhao <ztuowen@gmail.com>	2023-11-04 18:38:46 -0700
commit	4d908094fdc2a0c0e9a0a072eba213fab7adef43 (patch)
tree	7c17e70bcdeebbe96c84d849bdf17882007480d8 /SECURITY.md
parent	4b0bbc0b263a150eb9a9b59f196914629be06a9b (diff)
parent	632ed413a9ce62747ded83d7736491b081be4b49 (diff)
download	zsh-master.tar.gz zsh-master.tar.bz2 zsh-master.zip