QUIP 7: Add optional 'SecurityCritical' attribute

This is only informative / for the author (or release manager)
for now and is not shown in the documentation.

Change-Id: I5a7f8244189606654cabfc3ace530d1b988b4a00
Reviewed-by: Volker Hilsheimer <volker.hilsheimer@qt.io>
Reviewed-by: Tuukka Turunen <tuukka.turunen@qt.io>

1 files changed, 7 insertions, 1 deletions

diff --git a/quip-0007.rst b/quip-0007.rst
index 3148930..e177075 100644
--- a/quip-0007.rst
+++ b/quip-0007.rst
@@ -7,6 +7,7 @@ Created: 2017-02-15
 Post-History:
   https://lists.qt-project.org/pipermail/development/2017-March/029198.html
   https://lists.qt-project.org/pipermail/development/2023-February/043639.html
+  https://lists.qt-project.org/pipermail/development/2023-February/043667.html
 
 Overview
 ========
@@ -43,6 +44,10 @@ QtUsage
   (e.g. by using configure options), and what functionality is missing in
   this case.
   Mandatory.
+SecurityCritical
+  Boolean attribute indicating whether the 3rd party code is security critical
+  - that is, if it is part of code paths that process untrusted code, or is
+  otherwise critical for security purposes. Optional, default is "false".
 Path
   (Relative) path to the source directory. Default is same directory as the
   file. Optional.
@@ -57,7 +62,8 @@ Version
   or commit hash from a version control system.
   Optional.
 DownloadLocation
-  Link to exact upstream version. Optional.
+  Link to exact upstream version. Optional, unless SecurityCritical is
+  set to "true".
 Comment
   An arbitrary JSON object, for use by those maintaining third-party
   components, to leave notes to those doing future updates. JSON