Conversation
Added a security policy document outlining supported versions and vulnerability reporting, so vulnerabilities can be reported.
|
Hello, I've tried to contact to contact security team to report a security issue but no answer when sent to the email address security[[at]]payara[d0t]fish. Please confirm the actual process. |
Pandrex247
added
the
PR: Awaiting CLA
|
@RamyaBill @deetewari @MeroRai FYI as you'll know the process better than I |
|
38 days since my first contact mail to security at payara dot fish. Is that the correct email address? The report includes all details about the vulnerability. Please confirm... The impact is relevant. |
|
@Dedal0, thank you for your report. You can find our current policies on how Payara handles security issues here: https://docs.payara.fish/community/docs/Security/Overview.html. As outlined there, the correct process is to email any identified flaws or vulnerabilities to security@payara.fish. You’ve already done that, and our team is currently reviewing your submission. |
3 participants
Added a security policy document outlining supported versions and vulnerability reporting, so vulnerabilities can be reported.
Description
Important Info
Blockers
Testing
New tests
Testing Performed
Testing Environment
Documentation
Notes for Reviewers