Description
Problem: Private Triage Overdue goes red at 1, and the deadlines are tight — 2 business days for severity/important. That's a short window for triage, especially across time zones or during holidays. Combined with the red-at-1 threshold, a single issue arriving on a Thursday afternoon can show the team as red by Tuesday morning.
Proposal: Follow the same approach we used for bugs: start with more generous deadlines and gradually tighten them as the triage process matures.
Value Proposition
Deadlines that match the team's current capacity keep the dashboard useful as a health indicator rather than something that's always red.
Goals
- Start with longer CVE triage deadlines and reduce gradually over time
- Account for cross-timezone collaboration and holidays
Discussion
No response
Motivation
No response
Details
No response
Description
Problem: Private Triage Overdue goes red at 1, and the deadlines are tight — 2 business days for severity/important. That's a short window for triage, especially across time zones or during holidays. Combined with the red-at-1 threshold, a single issue arriving on a Thursday afternoon can show the team as red by Tuesday morning.
Proposal: Follow the same approach we used for bugs: start with more generous deadlines and gradually tighten them as the triage process matures.
Value Proposition
Deadlines that match the team's current capacity keep the dashboard useful as a health indicator rather than something that's always red.
Goals
Discussion
No response
Motivation
No response
Details
No response