Hi all, Please find on the staging some proposals and information. http://tomee.staging.apache.org/security/
Feedback welcome so that we can start with a process and also start checking CVE. JLouis 2014-02-19 15:28 GMT+01:00 David Blevins <[email protected]>: > Looks great so far. Filling in some details on 1.6.x and 1.5.x now. > > -David > > On Feb 19, 2014, at 3:32 AM, Jean-Louis MONTEIRO <[email protected]> > wrote: > > > Hello guys, > > > > In regards to the discussion opened here > > > http://openejb.979440.n4.nabble.com/Security-reporting-requirements-td4667859.html > > > > I'm creating a page on our website to describe the security process. I > > mainly took inspiration from other apache projects (tomcat to name but a > > few). > > > > I will commit it without any link and push again here so that anyone is > > free to say yes or no and to comment, add additional information. > > > > -- > > Jean-Louis > > -- Jean-Louis
