-
Notifications
You must be signed in to change notification settings - Fork 552
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
security: update supported version #15735
Conversation
SECURITY.md
Outdated
| 23.3.x | :white_check_mark: | | ||
| 23.2.x | :white_check_mark: | | ||
| 23.1.x | :white_check_mark: | |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I wonder if it would make sense to list the versions expected EoL and when previous versions went EoL.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
For sure it will not hurt, and it is security related so folks will appreciate.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@michael-redpanda I've improved the policy and added details. I've checked some other repositories, and I couldn't identify any EOL announcements. But nevertheless, I would love to see this information somewhere. @wreet do you agree?
new failures in https://buildkite.com/redpanda/redpanda/builds/43485#018cda88-29dc-4116-86f2-9c5531381c4e:
new failures in https://buildkite.com/redpanda/redpanda/builds/43565#018cea02-7119-4e8f-a1ad-b4ffd7bd083c:
new failures in https://buildkite.com/redpanda/redpanda/builds/43601#018cef2d-188d-4e3c-abee-f6baac4df0d9:
|
ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/43485#018cda88-29dc-4116-86f2-9c5531381c4e ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/43565#018cea2b-e227-415f-8a88-9a3c77abf0e3 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm!
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We would need to add a reference to our Redpanda Security Policy. Something in the spirit of:
Official Redpanda Security Policy can be found on redpanda.com/security
SECURITY.md
Outdated
| 23.3.x | :white_check_mark: | | ||
| 23.2.x | :white_check_mark: | | ||
| 23.1.x | :white_check_mark: | |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@michael-redpanda I've improved the policy and added details. I've checked some other repositories, and I couldn't identify any EOL announcements. But nevertheless, I would love to see this information somewhere. @wreet do you agree?
Updated with EOL info |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm!
@mattschumpert are the EoL dates confirmed/lgtm to you? Rest, LGTM. |
They look about right. I trust these are the GA bits available dates and you've verified them @piyushredpanda Is this going in the codebase? That sounds a bit risky cause EOL dates can change (e.g. we pushed 22.3 EOL out a month) |
Backports Required
Release Notes