[ https://issues.apache.org/jira/browse/CASSANDRA-6264?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13808088#comment-13808088 ]
Sherif Mansour commented on CASSANDRA-6264: ------------------------------------------- Yes the attack vectors would be limited in scope, but doesn't change the impact of the vulnerability :-) > Reporting security Issues resulting from static code analysis > ------------------------------------------------------------- > > Key: CASSANDRA-6264 > URL: https://issues.apache.org/jira/browse/CASSANDRA-6264 > Project: Cassandra > Issue Type: Task > Components: Core > Reporter: Sherif Mansour > > I am running some code quality and security based static code analysis on > Cassandra and would like to know what is the responsible disclosure process > for Cassandra Security issues. -- This message was sent by Atlassian JIRA (v6.1#6144)