Skip to content

Update the PerlSecPol to cover our new CVE process and provide an example. #23239

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 3, 2025
Merged

Update the PerlSecPol to cover our new CVE process and provide an example. #23239

merged 1 commit into from
May 3, 2025

Conversation

toddr
Copy link
Member

@toddr toddr commented May 1, 2025

Updates from PTS 2025 to clarify how the perl disclosure process will work.

  • Clarify what an embargo period is as this is surprisingly not well documented on the internet.
  • Provide a simple walkthrough to show a real example of the process.
  • This set of changes does not require a perldelta entry.

@toddr toddr force-pushed the perlsecpol_cve branch from e40703a to e7647a5 Compare May 1, 2025 16:05
@toddr toddr requested review from stigtsp and timlegge May 1, 2025 16:07
@toddr toddr force-pushed the perlsecpol_cve branch from e7647a5 to a256fe6 Compare May 1, 2025 16:16
timlegge
timlegge approved these changes May 1, 2025
View reviewed changes
Copy link

@timlegge timlegge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As discussed. I read it again and it seems clear. Looks good to me.

@toddr toddr force-pushed the perlsecpol_cve branch from a256fe6 to 93ff9cb Compare May 2, 2025 08:26
stigtsp
stigtsp approved these changes May 2, 2025
View reviewed changes
Copy link

@stigtsp stigtsp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@toddr
Copy link
Member Author

toddr commented May 2, 2025

Updated with feedback from @stigtsp and @timlegge

@book book self-requested a review May 2, 2025 09:47
@book book assigned ap and unassigned ap May 2, 2025
@book book requested a review from ap May 2, 2025 09:48
timlegge
timlegge approved these changes May 2, 2025
View reviewed changes
Copy link

@timlegge timlegge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good - might reference the timeline is firm once the distros are notified.

@toddr
Update the PerlSecPol to cover our new CVE process and provide an exa…
1e0fcfb 
…mple.

Updates from PTS 2025 to clarify how the perl disclosure process will work.

* Clarify what an embargo period is as this is surprisingly not well
  documented on the internet.
* Provide a simple walkthrough to show a real example of the process.
@toddr toddr force-pushed the perlsecpol_cve branch from 93ff9cb to 1e0fcfb Compare May 2, 2025 13:11
@toddr toddr merged commit d85c3a2 into blead May 3, 2025
67 checks passed
@toddr toddr deleted the perlsecpol_cve branch May 3, 2025 08:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stigtsp stigtsp stigtsp approved these changes

@book book book approved these changes

@timlegge timlegge timlegge approved these changes

@ap ap Awaiting requested review from ap

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@toddr @book @stigtsp @timlegge @ap