You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

What are the criteria for a "First Major Release"? How does Dave's proposed Project Readiness fit in? FWIW, I created this set of criteria for the Fabric 1.0 release.

Proposed/Draft Resolution 2:

  1. Have reached active status (the processes and community are mature)
    1. Implies release has met all the criteria for CII Best Practices Badge Best Practices Badge,
  2. Completed a security audit provided by Hyperledger
    1. no bugs that affect security of the system remain open unless they have mitigating workarounds published in release notes
    2. crypto code included in the release has been audited for crypto export compliance
  3. Completed a license scan
  4. The release features substantially fulfill the project's charter
  5. The release satisfies criteria defined by the project itself. All projects should meet some internally defined non-functional release criteria (bug counts, performance, etc.)
    1. adequate test coverage (unit and functional/integration) to have confidence that the release supports the non-functional criteria
    2. maintainers have reviewed all remaining open bugs and agree on severity/priority
    3. zero high or highest priority bugs remain open
    4. the preceding release candidate will have been published for a minimum period of time
    5. release will not require users/operators to compile code to operate the base project
    6. documentation sufficient to ensure that users/operators have clear guidance on how to get started and how to configure and operate. The operational aspects need to be correct and independently user tested
  6. signed release code (not sha1, which is what git currently uses as that is no longer secure), published images (DTR) and binaries,
  7. release notes


  • No labels