diff --git a/README.md b/README.md
index 00602c1..8a92997 100644
--- a/README.md
+++ b/README.md
@@ -850,12 +850,12 @@ utils.equalBytes(Uint8Array.from([0xde]), Uint8Array.from([0xde]));
 
 The library has been independently audited:
 
-- in Feb 2023 by [Trail of Bits](https://www.trailofbits.com):
-  [PDF](https://github.com/trailofbits/publications/blob/master/reviews/2023-01-ryanshea-noblecurveslibrary-securityreview.pdf).
-  The audit has been funded by [Ryan Shea](https://www.shea.io).
-  Audit scope was abstract modules `curve`, `hash-to-curve`, `modular`, `poseidon`, `utils`, `weierstrass`,
-  and top-level modules `_shortw_utils` and `secp256k1`.
-  See [changes since v0.7.3 audit](https://github.com/paulmillr/noble-curves/compare/0.7.3..main).
+- in Feb 2023, by [Trail of Bits](https://www.trailofbits.com). See
+  [PDF](https://github.com/trailofbits/publications/blob/master/reviews/2023-01-ryanshea-noblecurveslibrary-securityreview.pdf)
+  and [changes since audited v0.7.3](https://github.com/paulmillr/noble-curves/compare/0.7.3..main).
+    - Scope: abstract modules `curve`, `hash-to-curve`, `modular`, `poseidon`, `utils`, `weierstrass` and
+      top-level modules `_shortw_utils` and `secp256k1`
+    - The audit has been funded by [Ryan Shea](https://www.shea.io)
 
 It is tested against property-based, cross-library and Wycheproof vectors,
 and has fuzzing by [Guido Vranken's cryptofuzz](https://github.com/guidovranken/cryptofuzz).