Skip to content

Security: apache/grails-core

Security

SECURITY.md

Security Policy

Apache Grails is committed to the continued innovation, development, maintenance, and support of the Grails framework. Our goal is to provide Grails framework users the support they need while maintaining as much focus as possible on innovation. The level and type of support available for earlier versions of the Grails framework will change as the framework continues to evolve.

For information about the currently supported versions of the Grails framework, please see our Support Schedule.

Reporting Vulnerabilities

Please see the page of the ASF Security Team for further information and contact information.

Threat Model

The framework's threat model - what is in scope, what is out, what security properties are claimed, what is explicitly disclaimed, and how inbound reports and findings are triaged - is documented in THREAT_MODEL.md. Reporters and triagers should consult that document alongside this policy.

Learn more about advisories related to apache/grails-core in the GitHub Advisory Database