...
Time | Item | Who | Notes | ||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
5-10 min | Spring RCE vulnerability | All | See https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
Today:
| ||||||||||||||||
Official security support policy on releases | Security team needs
| ||||||||||||||||||
5 min | Update on
| Axel |
Today:
| ||||||||||||||||
5-10 min |
| Team | Notes from previous weeks: Discussions are ongoing, currently blocked on a decision being made.
Today:
| ||||||||||||||||
5-10 min |
| Team | Notes from previous weeks: There's a PR that hasn't' moved in a while... What's the status? How do we move this forward?
Was there another PR against stripes-testing?
Today:
| ||||||||||||||||
10 min |
| Team | Context: The ask is to review this story, and more specifically the comment thread. We can discuss more next week. The goal is twofold:
Today:
| ||||||||||||||||
5 min |
| Team/ | The level of exposure is not clear at this point. Julian Ladisch will look into it and get back to us. This information will feed back into conversations with capacity planning group wrt backporting to kiwi/lotus/etc. Indications are that there will not be a Kiwi HF3, so it may be that this only gets into Lotus HF1 and Morning Glory.
Today:
| ||||||||||||||||
* | Review the Kanban board. | Team |
Action items
- Julian Ladisch to document the options for restricting tenantId and module names on the wiki (Context:
/Jira Legacy server System JiraJIRA serverId 01505d01-b853-3c2e-90f1-ee9b165564fc key RMB-902
)Jira Legacy server System JiraJIRA serverId 01505d01-b853-3c2e-90f1-ee9b165564fc key OKAPI-1081