[
https://issues.apache.org/jira/browse/ACCUMULO-3277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Christopher Tubbs resolved ACCUMULO-3277.
-----------------------------------------
Resolution: Duplicate
Closing as duplicate of https://github.com/apache/accumulo-website/pull/372
> Document vulnerability reporting
> --------------------------------
>
> Key: ACCUMULO-3277
> URL: https://issues.apache.org/jira/browse/ACCUMULO-3277
> Project: Accumulo
> Issue Type: Task
> Components: docs
> Reporter: Sean Busbey
> Priority: Critical
> Labels: website
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> We currently have neither a security disclosure page nor instructions on how
> people should report vulnerabilities to us.
> [email protected] will already use our private@accumulo list for forwarding
> issues to us. Presuming we don't want to create security@accumulo, we should
> advertise that private@ is the preferred way for others to contact us.
> in addition to a dedicate page, a reference on the mailing lists page would
> be a good idea (since it's the closest thing we have to a 'contact us' page).
> ref: [ASF guide|http://www.apache.org/security/committers.html]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
