Mavericks team is responsible for addressing platform security issues which can be critical in keeping the integrity of the edx platform. The most helpful documentation we have is LMS/Studio Security Fix Process but we will be keeping some notes about this document for our team in this personal space as well. This does not mean we are going to duplicate the documentation, but to extract the bullet points which will give the team quick hints and quick start.
...
- Make sure you tag these tickets with
security
label. - The security release process is lengthy, so make sure you keep your Jira ticket updated always with the current step you are doing and expected next step. If you are blocked at any step, add the info on the ticket and tag your lead.
- Be careful while reviewing a PR ("Review changes"→ "Approve" → "Submit review"), Once you approve a PR, the PR will be selected for deployment on Production ("Stage" → "Production").
Starting Date | Total Issues |
---|
May 2019 | Jira Legacy |
---|
server | System JIRA |
---|
jqlQuery | project="Product (Internal Only)" and team=87 and labels in (security, Security) ORDER BY priority |
---|
count | true |
---|
serverId | 13fd1930-5608-3aac-a5dd-21b934d3a4b4 |
---|
|
|
Recent documents
Child pages (Children Display) |
---|