The FitNesse community takes security bugs seriously. Thank you for improving the security of FitNesse. We appreciate your efforts and responsible disclosure and will make every effort to acknowledge your contributions.

Security issues will be fixed by creating a new release, in general older versions will not receive patches.

To report a security vulnerability, please email: fitnesse-security 'at' hsac 'dot' nl.

Report security bugs in third-party modules to the person or team maintaining the module.

If you have suggestions on how FitNesse's security policy could be improved please submit a pull request.