meta: increase security policy response targets

mcollina · danielleadams · commit f51ce33836b4 · 2022-01-31T23:00:30.000-05:00
PR-URL: #40968 Reviewed-By: Michael Dawson <midawson@redhat.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Antoine du Hamel <duhamelantoine1995@gmail.com> Reviewed-By: Myles Borins <myles.borins@gmail.com> Reviewed-By: Vladimir de Turckheim <vlad2t@hotmail.com> Reviewed-By: Beth Griggs <bgriggs@redhat.com> Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Danielle Adams <adamzdanielle@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
diff --git a/SECURITY.md b/SECURITY.md
@@ -4,8 +4,8 @@
 
 Report security bugs in Node.js via [HackerOne](https://hackerone.com/nodejs).
 
-Your report will be acknowledged within 24 hours, and you’ll receive a more
-detailed response to your report within 48 hours indicating the next steps in
+Your report will be acknowledged within 5 days, and you’ll receive a more
+detailed response to your report within 10 days indicating the next steps in
 handling your submission.
 
 After the initial reply to your report, the security team will endeavor to keep
