14
edits
Security/Firefox/Security Bug Life Cycle/Security Advisories: Difference between revisions
Jump to navigation
Jump to search
Security/Firefox/Security Bug Life Cycle/Security Advisories (view source)
Revision as of 12:21, 5 December 2025
, 5 DecemberAdd information about public & private repo
(Delete old instructions) |
(Add information about public & private repo) |
||
| Line 11: | Line 11: | ||
# Clone or update https://github.com/MozillaSecurity/security-advisories-scripts | # Clone or update https://github.com/MozillaSecurity/security-advisories-scripts | ||
# Clone or update https://github.com/mozilla/foundation-security-advisories-private (next to the other working dir for the following examples) | # Clone or update https://github.com/mozilla/foundation-security-advisories-private (next to the other working dir for the following examples) | ||
# Make sure the private repository matches the public repository https://github.com/mozilla/foundation-security-advisories. The public repository should be the source of truth! | |||
# In the working directory, run <code>./gen_queries.py $VERSIONNUMBER</code> to find bugs which could get advisories | # In the working directory, run <code>./gen_queries.py $VERSIONNUMBER</code> to find bugs which could get advisories | ||
# For each bug, determine if it should get an advisory and assign the appropriate whiteboard tag on Bugzilla [[#Determine_what_bugs_will_get_advisories]] | # For each bug, determine if it should get an advisory and assign the appropriate whiteboard tag on Bugzilla [[#Determine_what_bugs_will_get_advisories]] | ||
| Line 18: | Line 19: | ||
# If you find any odd names you may want to email people and ask them to update their Bugzilla realname to whatever they want in the advisory. | # If you find any odd names you may want to email people and ask them to update their Bugzilla realname to whatever they want in the advisory. | ||
# Ask the Thunderbird folks if they will need advisories. If they do ask them to request a review from you on GH when their PR is ready. | # Ask the Thunderbird folks if they will need advisories. If they do ask them to request a review from you on GH when their PR is ready. | ||
===== Thursday ===== | ===== Thursday ===== | ||
# Repeat the steps above to get the most recent changes | # Repeat the steps above to get the most recent changes | ||