I work in InfoSec and my threat feeds warned me about a RoundCube vulnerability.
I was glad to see on the GitHub page that mailinabox has a new release with updated RoundCube.
You should move to the latest Mail-in-a-Box release as releases are posted, especially if an update addresses any security issues, although you do not necessarily need to do so. We will post release announcements to our twitter account @mailinabox, the announcements section of the discussion forum, and our Slack chat (see the homepage).
I fully appreciate that communication channels can and will evolve over time, and often with good reason. Can this be reflected in the documentation on the website?
I propose the following changes:
REMOVE link to Twitter (no longer in use)
REMOVE link to announcements on forum (no longer in use)
I started a MiaB Forum discussion, linked above, about the changes that I proposed, but little discussion resulted. I put a substantial amount of work into the proposed edits, and think the result warrants being merged into the main branch, yet always welcome constructive comment or criticism.