I was checking on securityfocus website & they have no vulns listed for syslog-ng for the versions we use. What is the best way to be alerted should there be a security advisory for the product?