From: Julia Ramer <gitprplr@gmail.com>

With the recent turnover on the git-security list, questions came up how
things are usually run. Rather than answering questions individually,
extend Git's existing documentation about security vulnerabilities to
describe the git-security mailing list, how things are run on that list,
and what to expect throughout the process from the time a security bug
is reported all the way to the time when a fix is released.

Helped-by: Junio C Hamano <gitster@pobox.com>
Helped-by: Taylor Blau <me@ttaylorr.com>
Signed-off-by: Julia Ramer <gitprplr@gmail.com>

Submitted-As: https://lore.kernel.org/git/pull.1345.v3.git.1666338109778.gitgitgadget@gmail.com
In-Reply-To: https://lore.kernel.org/git/pull.1345.git.1662071998812.gitgitgadget@gmail.com
In-Reply-To: https://lore.kernel.org/git/pull.1345.v2.git.1666142160427.gitgitgadget@gmail.com