From 62b5b91cc2e158beaa754f2b9e0c79c6b2560e30 Mon Sep 17 00:00:00 2001
From: Joep van Delft <jdelft@redhat.com>
Date: Fri, 13 Sep 2024 13:15:26 +0200
Subject: [PATCH 1/2] Prepare 4.14.37

---
 releases.yml | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/releases.yml b/releases.yml
index aea5e2f0bf..a92a795fe5 100644
--- a/releases.yml
+++ b/releases.yml
@@ -1,4 +1,33 @@
 releases:
+  4.14.37:
+    assembly:
+      basis:
+        assembly: 4.14.36
+        reference_releases!: {}
+      group:
+        advisories!:
+          image: -1
+          microshift: -1
+        release_jira: -1
+        # 4.14.36,4.13.50 + previous upgrades
+        upgrades: 4.14.36,4.13.50,4.13.19,4.13.21,4.13.22,4.13.23,4.13.24,4.13.25,4.13.26,4.13.27,4.13.28,4.13.29,4.13.30,4.13.31,4.13.32,4.13.33,4.13.34,4.13.35,4.13.36,4.13.37,4.13.38,4.13.39,4.13.40,4.13.41,4.13.42,4.13.43,4.13.44,4.13.45,4.13.46,4.13.48,4.13.49,4.14.0,4.14.1,4.14.2,4.14.3,4.14.4,4.14.5,4.14.6,4.14.7,4.14.8,4.14.9,4.14.10,4.14.11,4.14.12,4.14.13,4.14.14,4.14.15,4.14.16,4.14.17,4.14.18,4.14.19,4.14.20,4.14.21,4.14.22,4.14.23,4.14.24,4.14.25,4.14.26,4.14.27,4.14.28,4.14.29,4.14.30,4.14.31,4.14.32,4.14.33,4.14.34,4.14.35
+      issues:
+        include:
+        - id: OCPBUGS-41190 # controller-manager
+        - id: OCPBUGS-37826 # builder
+      members:
+        images:
+        - distgit_key: openshift-enterprise-builder
+          metadata:
+            is:
+              nvr: openshift-enterprise-builder-container-v4.14.0-202409111409.p1.g52565ca.assembly.stream.el8
+          why: Pin build that fixes cve-2024-7387
+        - distgit_key: ose-openshift-controller-manager
+          metadata:
+            is:
+              nvr: ose-openshift-controller-manager-container-v4.14.0-202409130708.p1.g9020ea1.assembly.stream.el8
+          why: Pin build that fixes cve-2024-45496
+    
   4.14.36:
     assembly:
       basis:

From 9de8386fdea55d3f669c648d8d8bd5f37b862ce5 Mon Sep 17 00:00:00 2001
From: Joep van Delft <jdelft@redhat.com>
Date: Mon, 16 Sep 2024 10:57:44 +0200
Subject: [PATCH 2/2] Permit embargoed content

---
 releases.yml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/releases.yml b/releases.yml
index a92a795fe5..3b38eb319b 100644
--- a/releases.yml
+++ b/releases.yml
@@ -8,7 +8,7 @@ releases:
         advisories!:
           image: -1
           microshift: -1
-        release_jira: -1
+        release_jira: ART-0
         # 4.14.36,4.13.50 + previous upgrades
         upgrades: 4.14.36,4.13.50,4.13.19,4.13.21,4.13.22,4.13.23,4.13.24,4.13.25,4.13.26,4.13.27,4.13.28,4.13.29,4.13.30,4.13.31,4.13.32,4.13.33,4.13.34,4.13.35,4.13.36,4.13.37,4.13.38,4.13.39,4.13.40,4.13.41,4.13.42,4.13.43,4.13.44,4.13.45,4.13.46,4.13.48,4.13.49,4.14.0,4.14.1,4.14.2,4.14.3,4.14.4,4.14.5,4.14.6,4.14.7,4.14.8,4.14.9,4.14.10,4.14.11,4.14.12,4.14.13,4.14.14,4.14.15,4.14.16,4.14.17,4.14.18,4.14.19,4.14.20,4.14.21,4.14.22,4.14.23,4.14.24,4.14.25,4.14.26,4.14.27,4.14.28,4.14.29,4.14.30,4.14.31,4.14.32,4.14.33,4.14.34,4.14.35
       issues:
@@ -27,7 +27,12 @@ releases:
             is:
               nvr: ose-openshift-controller-manager-container-v4.14.0-202409130708.p1.g9020ea1.assembly.stream.el8
           why: Pin build that fixes cve-2024-45496
-    
+      permits:
+      - component: openshift-enterprise-builder
+        code: EMBARGOED_CONTENT
+      - component: ose-openshift-controller-manager
+        code: EMBARGOED_CONTENT
+ 
   4.14.36:
     assembly:
       basis: