Hey Tommie, Just as an update on this topic, I'll give you an idea of what we might consider adding to the documentation page directly to explain our process:
Google takes security and the robustness of our products seriously. Each new version of PHP is tested as a completely new runtime. In order to ensure the environments are secure and durable, extensive testing and development is required. In general, the App Engine team is aware of the desire of the latest version runtime. As mentioned, it's currently possible to implement a custom runtime[1] on App Engine Flex containing the desired runtime. [1] - https://cloud.google.com/appengine/docs/flexible/custom-runtimes/ Cheers, Nick Cloud Platform Community Support On Friday, February 24, 2017 at 9:13:24 AM UTC-5, Tommie wrote: > > Official docs says PHP is on version 5.5.34. Most recent security update > is 5.5.38. > > On Friday, February 24, 2017 at 3:11:15 PM UTC+1, Tommie wrote: >> >> Hi, >> >> Does anyone know where to find vulnerability patching strategies and/or >> official documentation on how google keeps its PHP version patched from new >> CVEs? I'm investigating GAE for a project and i'm finding very little >> documentation around this. >> >> Thanks! >> > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/google-appengine. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/c7898a9c-e483-4495-8fcb-9a96ecde7304%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
