cloud-init team mailing list archive
Mailing list archive
cloud-init security bugs
Earlier this week there were four security bugs  reported
against cloud-init. These were a result of IBM passing cloud-init
through their code analysis tool. I want to thank them for taking the
time to do the scan and filing bugs for any issue found. This was a good
opportunity for us to test out our proposed security process.
After reviewing the reports we did not feel any of the issues were
security issues. All bugs are now marked public and have comments added
If there are any further questions or concerns please feel free to reach
out in each of the bugs or here. We are still working on finalizing the
security process and will post an update in the coming weeks.
Ubuntu Server Engineering Manager