From f04d8b93056c5f2bf1341fd1e31c6027d0f4217f Mon Sep 17 00:00:00 2001
From: Chris O'Haver <cohaver@infoblox.com>
Date: Sun, 1 May 2022 19:15:19 -0400
Subject: [PATCH] add Trail of Bits to list of 3rd party security auditors
 (#5356)

Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
---
 README.md | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 99e2aae0b..f69b5d225 100644
--- a/README.md
+++ b/README.md
@@ -281,9 +281,11 @@ And finally 1.4.1 that removes the config workarounds.
 
 ## Security
 
-### Security Audit
-A third party security audit was performed by Cure53, you can see the full report
-[here](https://coredns.io/assets/DNS-01-report.pdf).
+### Security Audits
+
+Third party security audits have been performed by:
+* [Cure53](https://cure53.de) in March 2018. [Full Report](https://coredns.io/assets/DNS-01-report.pdf)
+* [Trail of Bits](https://www.trailofbits.com) in March 2022. [Full Report](https://github.com/trailofbits/publications/blob/master/reviews/CoreDNS.pdf)
 
 ### Reporting security vulnerabilities