Review how defects can be reported to the ASF, how the Security Team works from day to day to dispatch vulnerability reports to the respective projects and support those projects in communicating with reporters and the public, and how various projects have reacted in the recent past and worked to close these defects on behalf of their developer and user communities.
The Apache Software Foundation presented the Security Team with one mission, to help vulnerability reporters find the right developers at the Foundation to evaluate these reports, and connect the reporters to those developers, and share best practices for the projects to ultimately reveal these defects to the public and help users mitigate or close these security defects.
Join us as we review how the Security Team works from day to day, how defects can be reported to the ASF, and how various projects have reacted in the recent past and worked to close these defects on behalf of their developer and user communities.
William Rowe and Mark Thomas are both long-time members of the ASF Security Response Team who will share these inside insights with security defect reporters and users.