Security

SECURITY.md

Security Policy

Reporting a Vulnerability

To report security vulnerabilities, please send email to awspringio@gmail.com.

Missing SNS message signature verification allows spoofing of HTTP/HTTPS endpoint notifications
GHSA-r4w4-wv68-qv85 published Apr 30, 2026 by MatejNedic

Moderate

Learn more about advisories related to awspring/spring-cloud-aws in the GitHub Advisory Database