Is it worth having a central list of security contact details and bug submission procedures for open source projects? Such information doesn't change often, and it might avoid the "I emailed the project lead" problem.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds