Closed Bug 1000250 Opened 11 years ago Closed 11 years ago

Come up with a way to land and test security patches that doesn't expose security problems in production

Categories

(Marketplace Graveyard :: Security, defect, P3)

Product:
Marketplace Graveyard
Component:
Security
Version:
Avenir
Platform:
x86
macOS
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: robhudson, Unassigned)

Details

We now have a private repo (zamboni-security) and private bugs. But our workflow is to cherry-pick the fixes while pushing to production. The problem is that the fixes are likely not tested or QA'd well because they didn't follow the normal dev->prod cycle.
deploy zamboni-security onto -altdev?
Group: client-services-security
Priority: -- → P3
Comment 1 solved it.
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.