[MDL-71270] Update security.txt for 4.0 release - Moodle Tracker

XML

Word

Printable

Details

Type: Task
Status: Closed
Priority: Blocker
Resolution: Fixed
Affects Version/s: 3.9.10, 3.10.7, 3.11.3, 4.0
Fix Version/s: 3.9.11, 3.10.8, 3.11.4
Component/s: General
Labels:

Affected Branches:
MOODLE_310_STABLE, MOODLE_311_STABLE, MOODLE_39_STABLE, MOODLE_400_STABLE
Fixed Branches:
MOODLE_310_STABLE, MOODLE_311_STABLE, MOODLE_39_STABLE
Pull from Repository:
git://github.com/mickhawkins/moodle.git
Pull 3.9 Branch:
~~MDL-71270~~-39
Pull 3.9 Diff URL:
https://github.com/mickhawkins/moodle/compare/8d38d0cee1...MDL-71270-39
Pull 3.11 Branch:
~~MDL-71270~~-311
Pull 3.11 Diff URL:
https://github.com/mickhawkins/moodle/compare/ea0487cdef...MDL-71270-311
Pull Master Branch:
~~MDL-71270~~-master
Pull Master Diff URL:
https://github.com/mickhawkins/moodle/compare/9145d80b0b...MDL-71270-master
Testing Instructions:

Hide

Visit <wwwroot>/security.txt and CONFIRM the expiry date is now on 30 May 2022.

Show
Visit <wwwroot>/security.txt and CONFIRM the expiry date is now on 30 May 2022.

Sprint:
HQ Team International CI H2-21

Description

In ~~MDL-69877~~ a new security.txt file, following the information @ security.txt was introduced.

The security.txt file located in /security.txt must be updated regularly, shortly before it expires (defined by the Expires element within the file). This task should be completed two weeks prior to the next major release.

As a minimum, this will involve updating the Expires value, which needs to be set to [expected major release date] + 3 WEEKS. If any of other details in the security.txt need to be amended, they should also be completed at the same time.

The updates should be made to master, as well as all other security supported Moodle versions that contain security.txt. This means all supported versions have an identical security.txt file (including the same expiry).

Detailed information (to be modified for each clone of this issue):

Branches affected: master, 40, 311, 310, 39
Expiry (major release + 3 weeks): 09 May 2022 + 3 weeks = 30 May 2022
Other changes: ... add any further changes required here

How to format the date correctly:

date --rfc-email --utc --date='30 May 2022 01:00 UTC'

(This issue is part of the release process, 2 weeks before release, and will be cloned as part of it.)

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

MDL-71270_Test Passed.PNG
29 kB
20/Oct/21 1:35 PM

Issue Links

has a clone

MDL-72836 Update security.txt for 4.1 release and related minors

Closed

is a clone of

MDL-70595 Update security.txt for 3.11 release

Closed

Activity

People

Assignee:: Michael Hawkins

Reporter:: Michael Hawkins

Peer reviewer:: Simey Lameze

Integrator:: Ilya Tregubov

Tester:: Gladys Basiana

Participants:: CiBoT, Gladys Basiana, Ilya Tregubov, Michael Hawkins, Simey Lameze

Component watchers:: Adrian Greeve, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 06/Apr/21 1:24 PM

Updated:: 22/Oct/21 7:22 PM

Resolved:: 22/Oct/21 7:22 PM

Fix Release Date:: 8/Nov/21

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

1h 9m