This is to announce the formal creation of a Security Team for Drupal that will be lead by Karoly Negyesi (chx). Karoly has been actively contributing code, support and documentation on Drupal for the last one and a half year and has been a strong proponent for setting up a formal security team.

As many of you know, we have been working on building out and extending the infrastruture of Drupal.org to handle additional things that will help our community grow. To that end, I setup a security announcement newsletter, a history of all security advisories (empty for now, we have yet to migrate the old advisories), and an RSS feed with the most recent security advisories.

If you setup or adminsiter Drupal sites, we strongly advise you to sign up for the list. To subscribe to the security announcement mailing list, visit the security page or check the newsletter settings under my account >> edit >> my newsletters.

The goals of the security team are to review reported security issues, and to act upon them. In addition, the security team will provide a platform that allows security advisories to be communicated to the Drupal community.

More information about the security team is available in the handbook at http://drupal.org/node/32750.