[PATCH] FAQ, METAFAQ: Mention zsh-security@.

[PATCH] FAQ, METAFAQ: Mention zsh-security@.

[Daniel Shahaf]

---
Already added to Arc/mlist.html by Phil.

Cheers,

Daniel


 Doc/Zsh/metafaq.yo | 8 +++++++-
 Etc/FAQ.yo         | 5 +++++
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/Doc/Zsh/metafaq.yo b/Doc/Zsh/metafaq.yo
index e69a0976c..ca7f26adf 100644
--- a/Doc/Zsh/metafaq.yo
+++ b/Doc/Zsh/metafaq.yo
@@ -34,7 +34,7 @@ uref(http://zsh.sourceforge.net/).
 texinode(Mailing Lists)(The Zsh FAQ)(Availability)(Introduction)
 sect(Mailing Lists)
 cindex(mailing lists)
-Zsh has 3 mailing lists:
+Zsh has several mailing lists:
 
 startitem()
 item(tt(<zsh-announce@zsh.org>))(
@@ -47,6 +47,12 @@ User discussions.
 item(tt(<zsh-workers@zsh.org>))(
 Hacking, development, bug reports and patches.
 )
+item(tt(<zsh-security@zsh.org>))(
+Private mailing list (the general public cannot subscribe to it) for discussing
+bug reports with security implications, i.e., potential vulnerabilities.
+
+If you find a security problem in zsh itself, please mail this address.
+)
 enditem()
 
 To subscribe or unsubscribe, send mail
diff --git a/Etc/FAQ.yo b/Etc/FAQ.yo
index 3e90a6c4e..171b2f9d7 100644
--- a/Etc/FAQ.yo
+++ b/Etc/FAQ.yo
@@ -2542,6 +2542,11 @@ label(62)
   )
   (posting to the last one is currently restricted).
 
+  Finally, there is a private mailing list (the general public cannot subscribe
+  to it) for discussing bug reports with security implications, i.e., potential
+  vulnerabilities: mytt(zsh-security@zsh.org).  If you find a security problem
+  in zsh itself, please mail this address.
+
   Note that you should only join one of these lists:  people on
   zsh-workers receive all the lists, and people on zsh-users will
   also receive the announcements list.