Hello, While working on multiple aspects of security processes, one question comes back frequently: which are the layers we support with those processes? This has impact on the number of SECURITY.md I will be submitting, of configuring any CVE synchronization work etc.
The YP download page offers a download of poky. The release documentation https://docs.yoctoproject.org/migration-guides/index.html#release-information nor the Release page (https://wiki.yoctoproject.org/wiki/Releases) does not exactly list layers covered. Is it poky only? Poky + meta-openemedded? With some BSP layers? This has a general impact, because I assume that layers maintained "externally" might have different security contacts, for example. Do we have that documented somewhere so that we can reference in the security documentation? Kind regards, Marta
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#1797): https://lists.openembedded.org/g/openembedded-architecture/message/1797 Mute This Topic: https://lists.openembedded.org/mt/102077441/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-architecture/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
