The project is getting a deluge of private vulnerability reports, most of which are invalid, and a few of which should have just been normal bugs. I propose that we create a [email protected] and disable the github offering, until such time as Github makes it possible to better triage vulnerability reports such as by demoting them into normal bugs more easily.
Thoughts? -jameson -- You received this message because you are subscribed to the Google Groups "libuv" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/d/msgid/libuv/CADnnjUX0D%2BJbGpzEs76R2jiSo3uPPAGU8LMvjVU0beBeWs9bAA%40mail.gmail.com.
