On 8/23/12 9:56 AM, Ehsan Akhgari wrote: > > Oh, it seems like I failed to articulate properly here. I was asking > about whether the security team is going to include a buffer before a > given release code freeze or uplift when approving patches. The > scenario that I am worrying about is the security team approving the > patch 3 days before a code freeze and the developer being on vacation > at that time. > > Hope that's clearer. :-)
Oh, well, yes. We'd better. :-) I don't think we're going to quite rush them all in. There is a balancing act between "OMG, we checked it in and it is semi-public!" and "OMG, we checked it in two days before building and now the build is toast" for stability. Al -- Program Manager Mozilla Security Team _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
