MaintNotes: a bit more description on the security list

author Junio C Hamano <gitster@pobox.com>

Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)

committer Junio C Hamano <gitster@pobox.com>

Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)
author Junio C Hamano <gitster@pobox.com>
Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)
committer Junio C Hamano <gitster@pobox.com>
Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)
diff --git a/MaintNotes b/MaintNotes

index 891377edb8aeee32c476a79f01639c5dd3df9198..3b1ea739596b396b7c8ae8a07a96203e94c0b666 100644 (file)
--- a/MaintNotes
+++ b/MaintNotes
@@ -89,7 +89,16 @@ hints.
  
  If you think you found a security-sensitive issue and want to disclose
  it to us without announcing it to wider public, please contact us at
-our security mailing list <git-security@googlegroups.com>.
+our security mailing list <git-security@googlegroups.com>.  This is
+a closed list that is limited to people who need to know early about
+vulnerabilities, including:
+
+  - people triaging and fixing reported vulnerabilities
+  - people operating major git hosting sites with many users
+  - people packaging and distributing git to large numbers of people
+
+where these issues are discussed without risk of the information
+leaking out before we're ready to make public announcements.
  
  
  * Repositories and documentation.
author	Junio C Hamano <gitster@pobox.com>
	Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)
committer	Junio C Hamano <gitster@pobox.com>
	Fri, 29 Apr 2016 22:03:53 +0000 (15:03 -0700)