After reviewing the disclosed OpenSSL vulnerabilities, we are at low risk, and have elected to not take action at this time. Our web applications will be updated by our service provider. Please contact us with specific questions and concerns at support@travis-ci.org. Thank you.
Posted Mar 19, 2015 - 15:53 UTC
Update
OpenSSL vulnerabilities have been disclosed. We are evaluating our course of action.
Posted Mar 19, 2015 - 14:11 UTC
Update
We're still waiting for the new OpenSSL version to be released. Latest news from the OpenSSL team is that there's a potential issue in one of the patches for the newest version that is being investigated before release.
Posted Mar 19, 2015 - 13:32 UTC
In progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Posted Mar 19, 2015 - 11:00 UTC
Scheduled
A new version of OpenSSL with high severity security fixes is scheduled for release on Thursday at 11 AM UTC. Downtime *may* be required. Exact details will be communicated once the release is available to us.