Skip to content

Commit 98b78ee

Browse files
mbuechsembuechse
committed
Relax scs-0210-v2: extend update time for patch versions
Signed-off-by: Matthias Büchse <matthias.buechse@alasca.cloud>
1 parent 74a3197 commit 98b78ee

2 files changed

Lines changed: 2 additions & 2 deletions

File tree

Standards/scs-0210-v2-k8s-version-policy.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ In order to keep up-to-date with the latest Kubernetes features, bug fixes and s
5757
the provided Kubernetes versions should be kept up-to-date with new upstream releases:
5858

5959
- The latest minor version MUST be provided no later than 4 months after release.
60-
- The latest patch version MUST be provided no later than 2 weeks after release.
60+
- The latest patch version MUST be provided no later than 1 month after release.
6161
- This time period MUST be even shorter for patches that fix critical CVEs.
6262
In this context, a critical CVE is a CVE with a CVSS base score >= 8 according
6363
to the CVSS version used in the original CVE record (e.g., CVSSv3.1).

Tests/kaas/k8s-version-policy/k8s_version_policy.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@
4545

4646

4747
MINOR_VERSION_CADENCE = timedelta(days=120)
48-
PATCH_VERSION_CADENCE = timedelta(weeks=2)
48+
PATCH_VERSION_CADENCE = timedelta(days=31)
4949
CVE_VERSION_CADENCE = timedelta(days=2)
5050
CVE_SEVERITY = 8 # CRITICAL
5151

0 commit comments

Comments
 (0)