fabric8 is a JBoss project. Please do not report security issues via github, as these reports will be public. Instead, report any security issues you find in fabric8 to:
security at jboss.org
Anyone can post to this list. The subscribers are only trusted individuals who will handle the resolution of any reported security issues in confidence. In your report, please note how you would like to be credited for discovering the issue and the details of any embargo you would like to impose. Currently the security response teams for the following distributions are subscribed to this list and will respond to your report:
This page lists all security vulnerabilities fixed in fabric8. Each vulnerability is assigned a security impact rating on a four-point scale (low, moderate, important and critical). The versions that are affected by each vulnerability are also listed.
There are currently no security advisories.