search

openedx / wg-security

A repo to keep public issues related to Security Working Group Work
1 stars 0 forks source link

Create process for following up on open security vulnerabilities #39

Open pshiu opened 9 months ago

pshiu commented 9 months ago

OEP-66 institutes a reminder frequency at which the Security WG must remind maintainers of open vulnerabilities:

Severity Score Reminder frequency
Low ≥0.1 Twice a year
Medium ≥4.0 Once a quarter
High ≥7.0 Once a month
Critical ≥9.0 Once a week

This issue is for finding a way to automate the notifications of open vulnerabilities.