Just a heads-up that I'm finding increasing numbers of nsp-sec messages marked as phishing in my Gmail spam folder; other folks should check for false positives. Any possibility that some kind soul at Google could whitelist it globally somehow?