This is the process to describe dealing with security issues that should not be shared publicly. Since the Jira boards are open to non-organizational members it is prudent to obfuscate issues that may pose a risk to user privacy or continued service or uptime.
Share with slack channel #security-issues for verification
Create a LiteFarm owned Google Doc with description of the issue – share with tech lead for prioritization and give them share permissions.
Create a Jira ticket with a non or low descriptive title (eg [SECURITY] - Medium - Login #1) and link the google document.
Share ticket with slack channel and tag tech-lead/product-lead for prioritization.
LiteFarm shared drive folder: https://drive.google.com/drive/folders/1Fat5ZvEaSQ34CPQjyu2fclcoAmgSEH4f?usp=share_link
For contributors: Please request assistance for steps 1,2,4.