From c2478e813a364fba6688b902d4300432e9382445 Mon Sep 17 00:00:00 2001
From: matt <57604545+matt257@users.noreply.github.com>
Date: Tue, 26 Mar 2024 11:56:03 -0400
Subject: [PATCH] Update SECURITY.md  (#3458)

* Update SECURITY.md

update security.md to direct vulnerability reports to github.com/OSC/ondemand/security

* Update SECURITY.md

fixed a typo
---
 SECURITY.md | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 747cdb5b24..29ed6c32b9 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -6,8 +6,12 @@ project.
 ## Reporting a Vulnerability
 
 If you have security concerns or think you have found a vulnerability in Open OnDemand,
-please contact us directly via [security@openondemand.org](mailto:security@openondemand.org).
-Emails sent to it are only seen by the core project team.
+please submit a private report by visiting the 'Security' section of our GitHub located at [github.com/OSC/ondemand/security/](https://github.com/OSC/ondemand/security/) 
+and clicking 'Report a vulnerability'. 
+
+If you have questions about Open OnDemand's security, or have issues submitting a report please 
+contact us directly via [security@openondemand.org](mailto:security@openondemand.org).
+Emails sent there are only seen by the core project team.
 
 ## Disclosure Policy