| 1 |
On Fri, Aug 27, 2021 at 08:58:35AM +0200, Michał Górny wrote: |
| 2 |
> On Thu, 2021-08-26 at 19:11 -0500, John Helmert III wrote: |
| 3 |
> > In the past, stabilization for security bugs would be handled directly |
| 4 |
> > in that security bug. After some discussion on the gentoo-dev mailing |
| 5 |
> > list [1], there was some consensus on modifying this workflow to |
| 6 |
> > separate stabilization from security bugs. Going forward, separate bugs |
| 7 |
> > should be filed for security stabilizations and then the security bug |
| 8 |
> > will have a dependency on its stabilization bug. |
| 9 |
> |
| 10 |
> Great! I can make the field invisible on security bugs when you've |
| 11 |
> confirmed that all pending stabilizations are finished. Or without |
| 12 |
> that, if you prefer ;-). |
| 13 |
|
| 14 |
Sure! But let's at least wait until we're done with the pending security |
| 15 |
bugs which have CC-ARCHES [1], just to keep churn (and work for us) |
| 16 |
a bit lower. |
| 17 |
|
| 18 |
[1] https://bugs.gentoo.org/buglist.cgi?email1=security%40gentoo.org&emailassigned_to1=1&emailtype1=substring&f1=keywords&list_id=5758333&o1=substring&query_format=advanced&resolution=---&v1=CC-ARCHES |
Archives