marekkalnik opened a new issue, #1452: URL: https://github.com/apache/cordova-ios/issues/1452
# Bug Report ## Problem I have a potential security problem to disclose. The current security policy is outdated and does not help a contributor to disclose the vulnerability easily. ### What is expected to happen? I can contact someone easily and privately. ### What does actually happen? I get a link to [Apache Vulnerability Handling Process](https://apache.org/security/#reporting-a-vulnerability). The Cordova project is not in the contact list of Apache Project Security Information. The page states to contact `users` group in case the project is not liste. I am unable to find the `users` group anywhere. ## Checklist - [x] I searched for existing GitHub issues - [ ] I updated all Cordova tooling to most recent version - [x] I included all the necessary information above -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
