I'm not exactly sure on the process, but I think it's important to use a security-specific mailing list for tracking purposes. If the reports don't filter through [email protected], it makes sense to make a dedicated security@ mailing list for the project.
On Wed, 20 Mar 2019 at 11:57, Rodric Rabbah <[email protected]> wrote: > > Looks good to me - thanks Matt. > > -r -- Matt Sicker <[email protected]>
