This project adheres to the Eclipse Foundation Vulnerability Reporting Policy.

If you think you have found a vulnerability in Jakarta EE, you can report it using one of the following ways:

• Contact the Eclipse Foundation Security Team
• Create a confidential issue

You can find more information about reporting and disclosure at the Eclipse Foundation Security page.

Check individual repositories for supported versions. By default, only the latest release is supported.