Release policy for MongoDB Go driver

Hello,
What is release policy for driver mongoDB golang? (e.g. Release History - The Go Programming Language)

Do you support only latest major version or two newer version?

For example with CVE fixed with v1.4.2, will it be back port with 1.3 branch if any?

Many thanks
Jérôme

Hi @Jerome_LAFORGE,

We backport changes to the most current minor version. For example, once v1.4.0 has been released, changes will only be backported to the 1.4.x branch to make releases 1.4.1, 1.4.2, and so on. The CVE fixed with v1.4.2 will not be backported to the 1.3 branch. While that might be possible for this specific case, it’s not something we want to do regularly because our usage of any given dependency can change across minor versions and make backporting very risky.

– Divjot

2 Likes

Thanks for the clarification.

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.