[DRE-maint] Do you receive security tracker emails from upstream redmine ?
Jérémy Lal
kapouer at melix.org
Fri Aug 1 23:45:26 BST 2025
Le sam. 2 août 2025 à 00:43, Soren Stoutner <soren at debian.org> a écrit :
> On Friday, August 1, 2025 7:19:34 AM Mountain Standard Time Jérémy Lal
> wrote:
> > Hi,
> >
> > I still receive these emails from upstream redmine:
> > [Security - Defect #43083] Information disclosure in Two-Factor
> > Authentication
> >
> > but I'm not sure you do receive these, too.
> > Also I'm not sure what would be the proper recipient (
> > redmine at packages.debian.org ?).
>
> No, redmine at packages.debian.org does not receive these emails, although
> it
> would probably be a good idea. It looks like they are disclosed by email
> before they are publicly posted at:
>
> https://www.redmine.org/projects/redmine/wiki/Security_Advisories
I don't know well enough how <package>@packages.debian.org works:
is it "public" ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20250802/a4b421d9/attachment-0001.htm>
More information about the Pkg-ruby-extras-maintainers
mailing list