From 5c8740dd6e6f6b1091709a24617a7c9b319f2eab Mon Sep 17 00:00:00 2001
From: Salvo 'LtWorf' Tomaselli <tiposchi@tiscali.it>
Date: Wed, 12 Aug 2020 19:27:28 +0200
Subject: [PATCH] Better specify

---
 SECURITY.md | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 58c3ec1..637fe3d 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -2,7 +2,8 @@
 
 This project makes heavy use of `eval` and similar concepts.
 
-Queries are not meant to come from untrusted sources.
+Queries are not meant to come from untrusted sources. My advice is to never run
+this as an online service.
 
 ## Supported Versions
 
@@ -10,7 +11,9 @@ Only the latest release is supported. I will not backport fixes.
 
 ## Reporting a Vulnerability
 
-Contact me at tiposchi@tiscali.it
+For vulnerabilities that do not require a compromised user account:
+
+contact me at tiposchi@tiscali.it
 
 My PGP key is on this file, on git.
 debian/upstream/signing-key.asc