From 2aca2c36337b3ecbf2d9f47525c6c718e433a786 Mon Sep 17 00:00:00 2001
From: Arnout Engelen <engelen@apache.org>
Date: Tue, 16 Jun 2026 18:00:06 +0200
Subject: [PATCH] Update SECURITY.md: there is no security@impala.apache.org

You may apply for a project-specific security list if you feel ready for that (https://security.apache.org/resources/#project-specific-security-lists), but you don't have one currently
---
 SECURITY.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/SECURITY.md b/SECURITY.md
index db56c5c200..67f8644e82 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -33,7 +33,7 @@
 - **Status**: v1.
 - **Reporting**: vulnerabilities that fall under §8 (claimed properties) should be
   reported per the Apache Security Team disclosure channel
-  (<security@impala.apache.org>); reports that fall under §3 (out of scope), §9
+  (<security@apache.org>); reports that fall under §3 (out of scope), §9
   (properties not provided), or §11a (known non-findings) will be closed by Impala
   triagers citing this document.
 - **Provenance legend** —