If you discovered a potential vulnerability in ONAP we kindly ask you to report it to us as soon as possible. You can do this by creating a ticket in OJSI jira project.
To get more details about our vulnerability management process or learn about alternative communication channels please refer to ONAP Security.
ONAP Security Advisories (OSA)
You can find the latest published advisories in the OSA List