[ https://issues.apache.org/jira/browse/MNG-7905?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17780098#comment-17780098 ]
Karl Heinz Marbaise commented on MNG-7905: ------------------------------------------ Unfortunately this would require a change of the {{pom.xml}} format which is used in central repository and it's consumed by a large number of tools, IDE's etc. That would be breaking change... The {{pom}} contains a project url where the project could put such a link. Those informations are already shown on central can seen here: https://central.sonatype.com/artifact/org.apache.maven.plugins/maven-surefire-plugin/overview > Link to security issue reporting information > -------------------------------------------- > > Key: MNG-7905 > URL: https://issues.apache.org/jira/browse/MNG-7905 > Project: Maven > Issue Type: Wish > Components: Core > Reporter: Arnout Engelen > Priority: Minor > > The pom.xml already has a place where a project can describe how to report > issues to the project ('issueManagement'). It might be nice to also provide a > place to describe how to report security issues to the project, as that might > be different from regular issues? -- This message was sent by Atlassian Jira (v8.20.10#820010)