Skip to content

Update Root Store Policy page to v3.1#17258

Merged
stevejalim merged 2 commits into
mainfrom
WT-1379--root-store-policy-update
Jun 29, 2026
Merged

Update Root Store Policy page to v3.1#17258
stevejalim merged 2 commits into
mainfrom
WT-1379--root-store-policy-update

Conversation

@stevejalim

Copy link
Copy Markdown
Contributor

Done with the update_root_store_policy_page management command, specifically pointing it at the 3.1 doc (which is currently pending review):

./manage.py update_root_store_policy_page --source https://raw.githubusercontent.com/mozilla/pkipolicy/3.1/rootstore/policy.md

Issue / Bugzilla link

https://mozilla-hub.atlassian.net/browse/WT-1379
https://bugzilla.mozilla.org/show_bug.cgi?id=2049538

Done with the update_root_store_policy_page management command, specifically
pointing it at the 3.1 doc (which is currently pending review):

./manage.py update_root_store_policy_page --source https://raw.githubusercontent.com/mozilla/pkipolicy/3.1/rootstore/policy.md
@stevejalim stevejalim requested a review from a team as a code owner June 23, 2026 11:54
@stevejalim

Copy link
Copy Markdown
Contributor Author

FYI @BenWilson-Mozilla

@kkellydesign kkellydesign left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

@BenWilson-Mozilla

Copy link
Copy Markdown

Looks fine. Thanks.

<p>Failure to provide the DCR to Mozilla upon request, due to contractual, legal, or other restrictions, may be considered a failure to meet the audit requirements of this policy.</p>
<h5 id="3155-confidentiality-and-use-by-mozilla">3.1.5.5 Confidentiality and Use by Mozilla</h5>
<p>Mozilla’s access to the DCR is for informational and supervisory purposes related to evaluating compliance with this policy.</p>
<p>Mozilla recognizes that DCRs may contain sensitive security and operational information. DCRs should provide sufficient detail to enable understanding of the CA's systems, controls, risks, and compliance activities, including how risks are managed and how controls operate, while avoiding unnecessary disclosure of information that would materially increase risk to the security of CA systems or operations. System descriptions, diagrams, and control narratives should be prepared with this objective in mind..</p>

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
<p>Mozilla recognizes that DCRs may contain sensitive security and operational information. DCRs should provide sufficient detail to enable understanding of the CA's systems, controls, risks, and compliance activities, including how risks are managed and how controls operate, while avoiding unnecessary disclosure of information that would materially increase risk to the security of CA systems or operations. System descriptions, diagrams, and control narratives should be prepared with this objective in mind..</p>
<p>Mozilla recognizes that DCRs may contain sensitive security and operational information. DCRs should provide sufficient detail to enable understanding of the CA's systems, controls, risks, and compliance activities, including how risks are managed and how controls operate, while avoiding unnecessary disclosure of information that would materially increase risk to the security of CA systems or operations. System descriptions, diagrams, and control narratives should be prepared with this objective in mind.</p>

@stevejalim stevejalim merged commit f603554 into main Jun 29, 2026
4 checks passed
@stevejalim stevejalim deleted the WT-1379--root-store-policy-update branch June 29, 2026 08:32
@codecov

codecov Bot commented Jun 29, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 82.84%. Comparing base (1cfe08c) to head (082a92e).
⚠️ Report is 6 commits behind head on main.

Additional details and impacted files
@@           Coverage Diff           @@
##             main   #17258   +/-   ##
=======================================
  Coverage   82.84%   82.84%           
=======================================
  Files         178      178           
  Lines        9415     9410    -5     
=======================================
- Hits         7800     7796    -4     
+ Misses       1615     1614    -1     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants