If you find a vulnerability, please send an email to [email protected]. To expedite things, you can copy Flavia Rainone ([email protected]). This will ensure the bug is properly handled without causing unnecessary negative impacts for the Undertow's user base. You can find more information about the security procedures at this page.