About the Team

The Liferay Community Security Team is an all-volunteer group of community members who manage security issues related to Liferay CE. When security-related issues arise in the open source Liferay project, the CST works to notify, minimize the impact to, and provide source and binary patches to the community. In addition, the CST provides ongoing education to developers and users to help keep their Liferay sites secure.


The CST comprises of individuals from the wider Liferay community, as well as employees of Liferay, Inc. All community members are welcome to participate. Because membership gives access to information about potentially sensitive security issues, membership is somewhat limited to those in the Liferay community with a proven track record. The best way to get involved is to review security fixes with a security mindset, get down and dirty and fix a few issues, and interact with the team in its course of duties.

Additional Resources

Members members