briandelmsft
commented
1 year ago @piaudonn you won't see the 'report a vulnerability' button when you are logged in as a collaborator, you will see it if you are logged out, or logged in with another account not associated with the repo
Create a security policy for the repo, indicating how to report a vulnerability