Skip to content

Commit 3fe80c3

Browse files
RafaelGSSmarco-ippolito
RafaelGSS
authored and
marco-ippolito
committed
doc: include CVE to EOL lines as sec release process
Refs: nodejs/security-wg#1401 PR-URL: #56520 Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com> Reviewed-By: Trivikram Kamat <trivikr.dev@gmail.com> Reviewed-By: Ulises Gascón <ulisesgascongonzalez@gmail.com>
1 parent c85b386 commit 3fe80c3

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

doc/contributing/security-release-process.md

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -65,6 +65,8 @@ The current security stewards are documented in the main Node.js
6565
* [ ] 4\. **Requesting CVEs:**
6666
* Request CVEs for the reports with `git node security --request-cve`.
6767
* Make sure to have a green CI before requesting a CVE.
68+
* Check if there is a need to issue a CVE for any version that became
69+
EOL after the last security release through [this issue](https://github.com/nodejs/security-wg/issues/1419).
6870

6971
* [ ] 5\. **Choosing or Updating Release Date:**
7072
* Get agreement on the planned date for the release.

0 commit comments

Comments
 (0)
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy