pitrou commented on code in PR #753: URL: https://github.com/apache/arrow-site/pull/753#discussion_r2781189592
########## security.md: ########## @@ -6,9 +6,19 @@ description: Security # Reporting Security Issues -Apache Arrow uses the standard process outlined by the [Apache Security Team](https://www.apache.org/security/) for reporting vulnerabilities. Note that vulnerabilities should not be publicly disclosed until the project has responded. - -To report a possible security vulnerability, please email [[email protected]](mailto:[email protected]). +We take security seriously and would like our project to be as robust and +dependable as possible. If you believe to have found a security bug, please do +not file a public issue. + +First, please carefully read the Apache Arrow +[Security Model](https://arrow.apache.org/docs/dev/format/Security.html) +and understand its implications, as some apparent security issues can actually Review Comment: Thanks for the suggestion, that seems like a good idea. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
