If you want to report any security vulnerabilities please do so by creating an issue. Additionally, if you have a fix then please create a pull request and link it to the issue you have created.
Jira is our entrypoint to report security vulnerabilities. Having this mind a KUNSECU user story (type Vulnerability) needs to be created.
Follow this documentation.
Follow the domain ownership matrix and assign it to the corresponding team.
This is the benefit of having Dependabot. It will open pull requests for security and version updates. For more information check the GitHub documentation.