security policy: Specifically mention not reporting via Matrix

The Matrix room is just as public as the old IRC channel, which makes it just as unsuitable for reporting security vulnerabilities as IRC. Signed-off-by: Simon McVittie <[email protected]>
flatpak · Sep 14, 2021 · 25e3952 · 25e3952
1 parent 2b2cecb
commit 25e3952
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -22,8 +22,9 @@ please check
 ## Reporting a Vulnerability
 
 If you think you've identified a security issue in Flatpak, please DO NOT
-report the issue publicly via the GitHub issue tracker, mailing list, or IRC.
-Instead, send an email with as many details as possible to
+report the issue publicly via the GitHub issue tracker, mailing list,
+Matrix, IRC or any other public medium. Instead, send an email with as
+many details as possible to
 [[email protected]](mailto:[email protected]).
 This is a private mailing list for the Flatpak maintainers.