[jakartaee-tck-dev] How should the community report vulnerabilities in t

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[jakartaee-tck-dev] How should the community report vulnerabilities in the Platform TCK?

From: Scott Marlow <smarlow@xxxxxxxxxx>
Date: Mon, 27 Sep 2021 16:21:46 -0400
Delivered-to: jakartaee-tck-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jakartaee-tck-dev/>
List-help: <mailto:jakartaee-tck-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jakartaee-tck-dev>, <mailto:jakartaee-tck-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jakartaee-tck-dev>, <mailto:jakartaee-tck-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.1.0

[1] is for creating a SECURITY.md file that explains how to report a Platform TCK vulnerability. Note that [1] only mentions reporting vulnerabilities in the last release 9.1.x. If you disagree with the current content of [1], please respond here or on the [1] pull request.

If you agree with the [1] content, please approve the pull request or comment on the PR that it looks good.

Scott
[1] https://github.com/eclipse-ee4j/jakartaee-tck/pull/739

Follow-Ups:
- Re: [jakartaee-tck-dev] How should the community report vulnerabilities in the Platform TCK?
  - From: Scott Marlow

Prev by Date: Re: [jakartaee-tck-dev] https://github.com/orgs/eclipse-ee4j/projects/22 vs https://github.com/eclipse-ee4j/jakartaee-tck/projects/4
Next by Date: Re: [jakartaee-tck-dev] How should the community report vulnerabilities in the Platform TCK?
Previous by thread: [jakartaee-tck-dev] https://github.com/orgs/eclipse-ee4j/projects/22 vs https://github.com/eclipse-ee4j/jakartaee-tck/projects/4
Next by thread: Re: [jakartaee-tck-dev] How should the community report vulnerabilities in the Platform TCK?
Index(es):
- Date
- Thread

Breadcrumbs