Description:
Projects like Envoy proxy have a robust processe for vulnerability management, outlined here.
Envoy Gateway should establish similar processes, communication channels, responsibilities, SLOs, etc.
Additionally, Envoy Gateway security representatives should strive to join the Envoy Proxy private distributor list, to ensure early disclosure of vulnerabilities and proper preparation for fix releases.
Description: Projects like Envoy proxy have a robust processe for vulnerability management, outlined here.
Envoy Gateway should establish similar processes, communication channels, responsibilities, SLOs, etc.
Additionally, Envoy Gateway security representatives should strive to join the Envoy Proxy private distributor list, to ensure early disclosure of vulnerabilities and proper preparation for fix releases.