I wonder what is the best way to report a security issue?
I think there is a semi critical issue in AWX…
But I didn’t find something in the docs how to report such a potential security issue.
I think the preference is to email security concerns to security@ansible.com.
Pinging @AWX to confirm.
@no-12 For any Ansible related projects (Red Hat Supported or community maintained) please report via security@ansible.com
I appreciate you asking and not using a public forum/issue tracker to report potential security vunrabilities.
https://docs.ansible.com/ansible/latest/community/reporting_bugs_and_features.html#security-bugs