diff --git a/security/cve_policy.rst b/security/cve_policy.rst
index 5c7d3ece05cb3eec0fd2afddcc31706516a887fa..5d54a8d47d84cb61bed41a618eef27c50ea03978 100644
--- a/security/cve_policy.rst
+++ b/security/cve_policy.rst
@@ -248,6 +248,8 @@ Acknowledgements
 
 This process was inspired by the `OSS vulnerability guide
 <https://github.com/google/oss-vulnerability-guide/blob/main/guide.md>`__,
-`OpenSSF vulnerability-disclosures WG
+the `OpenSSF Vulnerability Disclosure WG guide to disclosure for OSS projects
+<https://github.com/ossf/oss-vulnerability-guide/blob/main/guide.md>`__,
+other work from the `OpenSSF vulnerability-disclosures WG
 <https://github.com/ossf/wg-vulnerability-disclosures>`__,
 `Zephyr project security policy <https://www.zephyrproject.org/security/>`__.