DrupalSecurityTeam / drupalpcicompliance

Official github repo for the Drupal PCI compliance white paper.
http://drupalpcicompliance.org
Other
55 stars 15 forks source link

Issues for 1.2 release #29

Closed rickmanelius closed 10 years ago

rickmanelius commented 10 years ago

With version 1.1 now shipped, I'm opening up a ticket to track any/all issues required for the next release, which may not be for at least a few months. Still, it'll be useful to use this as a means of creating a proper change log.

rickmanelius commented 10 years ago

The big issue to address in 1.2 will be #30. Basically the change will be noting the PCI FAQs that reference HPPs being SAQ A compatible, although the paper will still recommend SAQ A-EP because they are still vulnerable to man-in-the-middle attacks.

rickmanelius commented 10 years ago

1.2 will also include the minor revisions since 1.1 (mostly spelling/grammar).

rickmanelius commented 10 years ago

I need to get feedback on this commit (https://github.com/rickmanelius/drupalpcicompliance/commit/25a48d21f5ca58e9908cd0220cee35ed8e76c87c#diff-d41d8cd98f00b204e9800998ecf8427e), otherwise this is ready for release. Unlike the version 1.1 release (which was major), I'm not going to go through as lengthy of a review process. I could actually consider this version 1.1.1 consider it's a tweak with some grammar edits and nothing more.

rickmanelius commented 10 years ago

Actually there are two commits worth noting:

https://github.com/rickmanelius/drupalpcicompliance/commit/333def718a58fe0483d37425ff3d2a1ff8c558e6#diff-d41d8cd98f00b204e9800998ecf8427e https://github.com/rickmanelius/drupalpcicompliance/commit/25a48d21f5ca58e9908cd0220cee35ed8e76c87c#diff-d41d8cd98f00b204e9800998ecf8427e

rickmanelius commented 10 years ago

Version 1.2 was released https://github.com/rickmanelius/drupalpcicompliance/releases/tag/v1.2.