Someone Reports a Security Issue in my Project! Now What?
Special Extra! This session was recorded as part of the Virtual Eclipse Community Meetups.
All projects have bugs. Some of them have a security impact and can be used to cause harm. We call them vulnerabilities. Because of the possible impact of security issues, we handle them differently. This talk will guide the audience through the Eclipse Foundation processes of reporting and managing vulnerabilities with new tooling. As a bonus, Marta will show resources for your project, like a SECURITY.md template.