Date:
Attendees
Maya MADRID (chair) MM
Anastasios SKOURLIS (AS)
Adrien GOHY (AG)
Erbil KOP (EK)
Kristof POPGEORGIJEV (KP)
Project progress:
DOMIBUS:
- 4.2.6 (bug fix release) version was released as planned on the
- Domibus 5.0 RC development activities continue to progress within the expected pace. All major feature development concluded.
SMP:
- SMP 4.2 (Use EU Login for SMP console | Upgrade libraries to latest possible versions and fix OWASP threats | Security features and updates) development work ongoing.
SML:
- Vulnerability detected in certain versions of the Apache’s Log4j JAVA software library (Domibus and SMP not affected)
- EC SML instances were patched.
- Downloadable artifact on the CEF portal was updated and a security note was posted in the release page instructing users on how to address the vulnerability in their deployed SML instances
Evolutive Maintenance:
Milestones progress:
| Milestone Title | Start Date | End Date | % complete | Status | Comments |
|---|---|---|---|---|---|
| Domibus 4.1.6 | 11/Nov/20 | 26/Nov/20 | 100% | COMPLETED | Libraries update following security vulnerabilities reported |
| Domibus 4.1.7 | 13/Jan/21 | 17/Feb/21 | 100% | COMPLETED | Postponed from the 12th to the 17th Feb | Upgrade specific libraries to lasts possible versions to address OWASP detected threats | fix double decompressing of payloads issue |
| Domibus 4.1.8 | 10/Mar/21 | 22/Jun/21 | 100% | COMPLETED | bug fix release | CXF library upgrade Release currently on hold due to a dependency with a upcoming release of a 3rd party library |
| Domibus 4.1.9 | 26/Jul/21 | 29/Jul/21 | 100% | COMPLETED | Security fix release | 3rd Party library upgrade | OWASP detected threats |
| 12/Nov/19 | 21/Sep/20 | 100% | COMPLETED | ||
| Domibus 4.2 FR | 22/Sep/20 | 17/Dec/20 | 100% | COMPLETED | released on the 17th Dec, instead of the planned date of the 10th, due to a last minute detection of a bug |
| Domibus 4.2.1 | 15/Jan/21 | 23/Mar/21 | 100% | COMPLETED | Postponed from the 29th Jan | Bug fix release -UUM&DS caching issue | Deletion policy extension fix | CXF library upgrade |
| Domibus 4.2.2 | 25/Mar/21 | 26/May/21 | 100% | COMPLETED | Bug fix release | OWASP detected threats |
| Domibus 4.2.3 | 23/Jul/21 | 04/Aug/21 | 100% | COMPLETED | Bug fix release |
| Domibus 4.2.4 | 23/Aug/21 | 03/Sep/21 | 100% | COMPLETED | Bug fix release |
| Domibus 4.2.5 | 13/Oct/21 | 29/Oct/21 | 100% | COMPLETED | Bug fix release | OWASP detected threats |
| Domibus 4.2.6 | 13/Oct/21 | 17/Dec/21 | 100% | COMPLETED | Bug fix release |
| 14/Sep/20 | 28/Feb/22 | 69% | ONGOING | Release to be postponed from 17/Sep/21 to a new date (see table) | |
| Domibus 5.0 FR | 1/Mar/22 | 29/Apr/22 | - | NOT STARTED | Release to be postponed from 17/Dec/21 to a new date (see table) |
| SML 4.0.2 | 29/Nov/19 | 18/Feb/20 | 100% | COMPLETED | code freeze 6th Jan | release in acc 31st Jan | Prod release 18th | new service for support team that they can update or delete large SMP data in controlled way. |
| SML 4.1 Acceptance | 12/Oct/20 | 18/Jan/21 | 100% | COMPLETED | Postponed from 10/Nov/20 to 18Jan/21 due to an important security enhancement that became possible due to a policy change at SNET level. Security features and updates | Upgrade libraries to latest possible versions and fix OWASP threats |
| SML 4.1 Production release | 20/Jan/21 | 16/Feb/21 | 100% | COMPLETED | |
| 01/Oct/21 | 25/May/22 | 54% | ONGOING | Use EU Login for SMP console | Upgrade libraries to latest possible versions and fix OWASP threats | Security features and updates (new release dates set) | |
| SMP 4.2 FR | 26/Jun/21 | 30/Jun/22 | - | NOT STARTED | |
| eDelivery Access Point - e-TrustEx Backend Plugin version 1.2 RC | 03/May/19 | 20/Feb/20 | 100% | COMPLETED | making the plugins work in Domibus multi-tenant | security enhancement in interactions to backend | minor bugs fixes Operations |
| eDelivery Access Point - e-TrustEx Backend Plugin version 1.2 FR | 20/Feb/20 | 8/Jun/2020 | 100% | COMPLETED | Release date: 8th June Release delayed from the 31st March to the 22nd May do to the need to support the SO office in upgrading the plugin environments in the EC making the plugins work in Domibus multi-tenant | security enhancement in interactions to backend | minor bugs fixes Operations |
Operations
Incident Management :
Operations management:
