Security release retrospective: 14.10.1, 14.9.4, 14.8.6
This is a retrospective of the past security release https://gitlab.com/gitlab-org/gitlab/-/issues/357441. The purpose of this issue is to discuss:
- What went well
- What went not so well, and
- What can we do to make the next security release a successful one.
And to create action items to improve the next security releases.
Corrective actions:
- Include a section on the security release runner template to coordinate with GitLab release managers and AppSec engineer on-call gitlab-org/ci-cd/runner-release-helper!69 (merged), gitlab-org/gitlab-runner!3432 (merged)
- Implement HA architecture for packages.gitlab.com &592 (closed)
- Include a step on the GitLab security release template gitlab-org/release-tools!1808 (merged) to coordinate with Runner maintainers as one of the first steps.
Edited by Mayra Cabrera