[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
Re: [eclipse.org-architecture-council] Auto-generated emails containing secure information received
|
I also received such an email from technology-pmc-request@xxxxxxxxxxx
stating that emails from the technology-pmc list to my gmail account bounced. This email includes a password in plain text. The mailing list membership page
mentioned in the email
responds "404 Not found".
cc-ing Mikael leading the Eclipse foundation's security team.
From: eclipse.org-architecture-council <eclipse.org-architecture-council-bounces@xxxxxxxxxxx> on behalf of Nikhil Nanivadekar via eclipse.org-architecture-council <eclipse.org-architecture-council@xxxxxxxxxxx>
Date: Sunday, 7. December 2025 at 16:10
To: technology-pmc-owner@xxxxxxxxxxx <technology-pmc-owner@xxxxxxxxxxx>
Cc: Nikhil Nanivadekar <nikhilnanivadekar@xxxxxxxxx>, eclipse.org-architecture-council <eclipse.org-architecture-council@xxxxxxxxxxx>
Subject: [eclipse.org-architecture-council] Auto-generated emails containing secure information received
Hi Technology PMC owners, EMO,
I received an email to confirm my subscription to Technology PMC distribution list. This email is highly insecure because it contains my password in plain text.
Can you please prioritize fixing the emails sent such that they don’t contain passwords in plain text?
Honestly, I was a bit shocked and I am worried about the security and privacy controls to keep our account safe.
Architecture council, EMO,
What is the mechanism to request a verification that such incidents are handled promptly and systematic fixes are applied?
Thanks,
Nikhil.
