diff --git a/MaintNotes b/MaintNotes index 891377edb8..3b1ea73959 100644 --- a/MaintNotes +++ b/MaintNotes @@ -89,7 +89,16 @@ hints. If you think you found a security-sensitive issue and want to disclose it to us without announcing it to wider public, please contact us at -our security mailing list . +our security mailing list . This is +a closed list that is limited to people who need to know early about +vulnerabilities, including: + + - people triaging and fixing reported vulnerabilities + - people operating major git hosting sites with many users + - people packaging and distributing git to large numbers of people + +where these issues are discussed without risk of the information +leaking out before we're ready to make public announcements. * Repositories and documentation.