silverstripe-framework

mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-01 13:48:37 +02:00

History

Ingo Schommer af7e055574 DOCS Limited "critical security fixes" release lines We're adopting CVSS (https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator), which allows us to classify the impact of security issues based on industry standard metrics. While there is still a lot of room for interpretation, it is more objective than our previous system of "critical/high/medium/low", with one sentence descriptions on how we interpret that "severity rating". This effectively changes our process to only apply security fixes to release lines in "limited support" (currently 3.6 and 3.7) if they're considered "critical" (CVSS > 9.0). We've already limited preannounces to CVSS >7.0 in these docs.		2019-04-01 17:08:13 +13:00
..
_images	Update main.php path to support framework in vendor	2017-10-03 09:03:37 +13:00
00_Getting_Started	Merge branch '4' into 4	2019-03-11 21:31:22 +13:00
01_Lessons	DOCS Updating "lesson 0" to a relevant link	2019-02-22 16:33:51 +13:00
02_Developer_Guides	DOC Add more clear instructions on handling upgrade conflicts (#8836 )	2019-03-26 16:20:53 +13:00
03_Upgrading	Change case in link	2019-03-29 10:42:31 +13:00
04_Changelogs	Merge pull request #8811 from Juanitou/patch-5	2019-03-23 10:03:18 +13:00
05_Contributing	DOCS Limited "critical security fixes" release lines	2019-04-01 17:08:13 +13:00
index.md	DOCS Replaced references to core mailinglist with forum	2018-12-19 10:20:46 +13:00