Life of a CVE with Ingress-Nginx; Understanding the Project's Release Cycle

This talk delves into the lifecycle of a CVE within the Ingress-Nginx project, highlighting the intricacies of its release cycle. The speakers discuss the project's extensive testing infrastructure, the challenges of maintaining stability in a highly configurable controller, and real-world examples of how they work to improve the release process. They also touch upon their collaboration with Kubernetes security and release teams to enhance velocity, reduce complexity, and bolster the security of Ingress-Nginx.