Digging around, I am not seeing much presence for security? The mailling-list archive shows no activity on the security-team@lists.fedoraproject.org mailing list at all since last October? And no team meetings?
Just who/how are security vulnerabilities handled in Fedora now?