Hi Chris! As Arnout wrote, we set up the public security-discuss list and wiki
to be such a working group to capture and share some best practices among our
projects. It was the follow-up from some of the good ideas captured after the
White House meetings following on from log4shell. Then, an
is
list to the wider ASF community via the members list.
Regards, Mark J Cox
ASF Security
On Mon, Sep 27, 2021 at 11:31 AM r00t4dm wrote:
> Hi,
>
> I want to know, How to subscribe to this mail list.
>
> r00t4dm
>
> Cloud-Penetrating Arrow Lab of Meituan Corp
org
>
> Craig
>
> > On Sep 19, 2021, at 11:27 PM, Mark J. Cox wrote:
> >
> > On 2021/09/19 21:44:34, Dave Fisher wrote:
> >> This is a good idea. Assuming that this is a public list then either
> pick another name, or do not use self serve to request it, instead use
On 2021/09/19 21:44:34, Dave Fisher wrote:
> This is a good idea. Assuming that this is a public list then either pick
> another name, or do not use self serve to request it, instead use an INFRA
> JIRA ticket.
>
> Security@ lists requested through self serve become private mailing lists
> w
On Mon, Sep 7, 2020 at 2:21 PM Jarek Potiuk wrote:
> I also talked to the Apache Security team today (there was an issue raised
> about the security of the images which I think should be part of the policy
> as well.
>
Thanks Jarek. What happened is that we got a report to secur...@apache.org
a
