[openssl-project] coverity defect release criteria (Fwd: New Defects reported by Coverity Scan for openssl/openssl)

Tim Hudson tjh at cryptsoft.com
Mon Sep 10 07:28:19 UTC 2018

On Mon, Sep 10, 2018 at 8:44 AM, Matt Caswell <matt at openssl.org> wrote:

> As far as the release criteria go we only count the ones shown in the
> Coverity tool. That's not to say we shouldn't fix issues in the tests as
> well (and actually I'd suggest we stop filtering out problems in the
> tests if anyone knows how to do that...perhaps Tim?).

I have changed things to no longer exclude the tests area from the online
reports (that was a historical setting on the original project from
The second project which I got added to track master has always emailed all
I have also now changed the OpenSSL-1.0.2 project to report all errors as
well via email - no longer excluding various components.

So now we should have both the online tool and the emails for both projects
configured the same and including the test programs.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-project/attachments/20180910/e7b9a416/attachment.html>

More information about the openssl-project mailing list