On Sat, Aug 22, 2020 at 4:50 PM sebb <[email protected]> wrote: > On Sat, 22 Aug 2020 at 17:13, Gilles Sadowski <[email protected]> > wrote: > > > > 2020-08-22 16:02 UTC+02:00, Gary Gregory <[email protected]>: > > > Here is a first cut: > > > > > > https://github.com/apache/commons-io/security/policy > > Why does IO have links to Known Vulnerabilities for Compress, > Collections etc, but not IO? >
That's just a reflection of what is here: http://commons.apache.org/security.html Gary > > > And here is my suggestion: > > https://github.com/apache/commons-rng/security/policy > > I'm inclined to agree with Gilles here; a simple link is sufficient. > > No need to update multiple files when the text has to be updated. > > > YMMV, > > Gilles > > > > > [...] > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [email protected] > > For additional commands, e-mail: [email protected] > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
