[syslog-ng] Best way to keep up with security alerts for syslog-ng?

I was checking on securityfocus website & they have no vulns listed for syslog-ng for the versions we use. What is the best way to be alerted should there be a security advisory for the product?