git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Willy Tarreau <w@1wt.eu>
	Sat, 9 May 2026 09:47:53 +0000 (11:47 +0200)
committer	Jonathan Corbet <corbet@lwn.net>
	Tue, 12 May 2026 17:09:14 +0000 (11:09 -0600)
commit	aed3c3346765e4317bb2ec6ff872e1c952e128ab
tree	7ecfefe219273732ca39b83a9c41526617e0df4d	tree \| snapshot
parent	254f49634ee16a731174d2ae34bc50bd5f45e731	commit \| diff

Documentation: security-bugs: do not systematically Cc the security team

With the increase of automated reports, the security team is dealing
with way more messages than really needed. The reporting process works
well with most teams so there is no need to systematically involve the
security team in reports.

Let's suggest to keep it for small lists of recipients and new reporters
only. This should continue to cover the risk of lost messages while
reducing the volume from prolific reporters.

Cc: Greg KH <gregkh@linuxfoundation.org>
Cc: Leon Romanovsky <leon@kernel.org>
Reviewed-by: Leon Romanovsky <leon@kernel.org>
Reviewed-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Willy Tarreau <w@1wt.eu>
Signed-off-by: Jonathan Corbet <corbet@lwn.net>
Message-ID: <20260509094755.2838-2-w@1wt.eu>