I'm working on refining how the community handles security issues found in Tianocore. Expect an update soon(tm), however, in the meantime, please refer to the update on our portal at: http://tianocore.org/security.
The TL;DR we're asking all security issues discovered in Tianocore be reported to the UEFI USRT as a stop-gap measure. Issues should not be reported through any other unencrypted, insecure mechanism. I'll be discussing our process with the UEFI USRT next week. ***do not send further emails on tianocore-secur...@lists.sourceforge.net*** --- Tony Mangefeste Intel Corporation STO/SMC Community Technology Lead Tianocore Community Manager g+: https://goo.gl/l5B5JH t: @tonymangefeste _______________________________________________ edk2-devel mailing list edk2-devel@lists.01.org https://lists.01.org/mailman/listinfo/edk2-devel
