-
Task
-
Resolution: Done
-
Undefined
-
None
-
None
Steps:
- Prepare draft pull request for Release of each OSSM/Kiali version to https://gitlab.cee.redhat.com/istio/konflux/ossm and https://gitlab.cee.redhat.com/istio/konflux/kiali and specific version branch (e.g. ossm-3.0, ossm-2.6 etc.)
- Create new folder under `releases` folder with release version (you can copy-passed from previous version)
- Update versions, author and release type
- release type == (RHSA, RHBA, and RHEA)
- if at least 1 CVE exists => RHSA
- release type == (RHSA, RHBA, and RHEA)
- When the release candidate is available, update the Snapshot info (keep snapshot information up to date and sync with test matrix document during the release process in case more release candidates exist)
- Add release notes there and fixed JIRA tickets (not for FBC `Release` resources)
- You can use Jira filter for a specific version (do not include internal/qe JIRAs there), e.g. 3.0.3 https://issues.redhat.com/projects/OSSM/versions/12462269
- Add each JIRA to .spec.data.releaseNotes.issues
- Add info about CVEs there (not for FBC `Release` resources)
- The fixed CVEs Jira tickets can be found in the CVE Tracker or when you list all issues with the specific target/fix version. ( that CVE issues JIRAs are created by prodsec team)
- For each CVE:
- Add CVE number to .spec.data.releaseNotes.cves
- Add CVE reference under .spec.data.releaseNotes.references (see previous releases as an example)
- Add CVE info to the description under Security Fix (es)
- Ask DOC team about the review of release notes PRs ( do not merge the PR, it will be merged during pushing to production proces )
- they have dedicated subtask (`Review advisory on Konflux`) for that in `(At ReleaseCandidate): [DOC] Release Notes, Known Issues and Bug Fixes ` task
Examples of PRs from 3.0.3 release
- clones
-
OSSM-9212 Prepare release resources and CVEs
-
- Backlog
-