From 9c742c1d83e71132452e08d325e5a90d1631c302 Mon Sep 17 00:00:00 2001 From: Ian Craggs Date: Fri, 19 Jan 2024 09:57:35 +0000 Subject: [PATCH] Add security info file as required by Eclipse processes --- SECURITY.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..d1ae30d8 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,16 @@ +# Security Policy + +This project follows the [Eclipse Vulnerability Reporting Policy](https://www.eclipse.org/security/policy.php). +Vulnerabilities are tracked by the Eclipse security team, in cooperation with the project lead. +Fixing vulnerabilities is taken care of by the project committers, with assistance and guidance of the security +team. + +## Supported Versions + +Eclipse Paho provides security updates for the most recent version only. + +## Reporting a Vulnerability + +We recommend that in case of suspected vulnerabilities you do not create a GitHub issue, but instead contact the +Eclipse Security Team directly sending an email to security@eclipse.org. +