Hi devs,
WDYT about aligning all our security issues in jira by doing the following:
- Decide that new security issue must be created using the new Security issue type. Note that when doing so, the confidential level is set automatically which makes it better to avoid sending a jira notification on a public channel by error.
- Drop the
security
label since the issue type would be enough to identify security issues. - Move all existing security issues to use the new Security type (no email sent during the conversion ;)). Also remove the
security
label. - Update documentation to explain this new way of creating security issues
- Update existing security filters on jira
Thanks