forked from envoyproxy/envoy
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
security: some GREYFOX inspired policy fine tunings. (envoyproxy#12276)
We heard back from Istio that release adjacency to EOQ wasn't great, and from other internal teams that more details on the CVEs in the distributor mailout would be helpful. Signed-off-by: Harvey Tuch <[email protected]>
- Loading branch information
Showing
2 changed files
with
4 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -124,6 +124,9 @@ to perform a release within this time window. If there are exceptional circumsta | |
security team will raise this window to four weeks. The release window will be reduced if the | ||
security issue is public or embargo is broken. | ||
|
||
We will endeavor not to overlap this three week window with or place it adjacent to major corporate | ||
holiday periods or end-of-quarter (e.g. impacting downstream Istio releases), where possible. | ||
|
||
### Fix and disclosure SLOs | ||
|
||
* All reports to [email protected] will be triaged and have an | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters