You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: SECURITY.md
+2-3Lines changed: 2 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,9 +11,8 @@ The 1.4.x version is actively maintained.
11
11
12
12
## Reporting a Vulnerability
13
13
14
-
If you have identified a security issue, ask on the [XStream mailing list](https://groups.google.com/group/xstream-user)
15
-
for access to the XStream Security list and you will receive an invitation. Send a security report there with details to
16
-
reproduce the problem with the latest XStream version.
14
+
If you have identified a security issue, please open a [new private security advisory](https://github.com/x-stream/xstream/security/advisories/new).
15
+
Provide there all details to reproduce the problem with the latest XStream version.
17
16
18
17
Note, that XStream cares about security issues with XStream itself or in combination with the Java runtime, but not with
19
18
3rd party libraries. It is in the resposibility of each developer who brings those libraries together to setup the
0 commit comments