Security Home

This is the FOLIO Security Team's wiki space. This group is charged with  overseeing the process related to identification and resolution of security vulnerabilities reported against FOLIO.
The team works in close collaboration with the Technical Council and the development team of the affected component.

The team is made up of the following community members:

• @Axel Dörrer 

• @Craig McNally 

• @Julian Ladisch 

• @Jakub Skoczen (replaced @Mike Gorrell Oct 21, 2021)

• @John Coburn 

• @Ryan Berger 

• @Chris Rutledge (Replaced @Brandon Tharp Mar 10, 2022)

• @Skott Klebe (Added Sep 14, 2022)

• @Jens Heinrich (Added Jul 29, 2024) 

• @Kevin Day (Added Jul 29, 2024) 

• @Tom Gorman (Added Jan 27, 2025)

As a group we can be reached via security@folio.org or via the SECURITY Jira project, for details see Reporting and Tracking Security Vulnerabilities.

https://www.youtube.com/watch?v=uAsGslD6PR8

Google Drive: https://drive.google.com/drive/folders/1ADrEZc9dasSOOa4ca9LogJg6HnkuDRyZ

Initial Meeting Agenda/Notes: https://docs.google.com/document/d/1lcBQpwP8wBj8bABuvPQYJw54psPdIQBLcb7FMe5DNSc/edit#

Hall of Fame

By this list we want to thank and show our gratitude to all the contributors helping to make the FOLIO project more secure.

2020

• Alisha Sheikh

2025

• xbow-security

2026

• Omri (galaxysec.co.uk)

If your name is on the list incorrectly or you feel you should be on the list please feel free to mail us at security@folio.org