Learn how to put your digital team to work with MuleSoft for Agentforce.
Register now
Contact Us 1-800-596-4880
  1. Homepage
  2. Mule Runtime (3.8)
  3. Reference
  4. Securing

  5. MuleSoft Security Update Policy

MuleSoft Security Update Policy

Mule runtime engine version 3.8 reached its End of Life on November 16, 2021. For more information, contact your Customer Success Manager to determine how to migrate to the latest Mule version.

Within MuleSoft, a dedicated Security Support Representative is responsible for subscribing to notifications for security vulnerabilities notifications for all third-party libraries included in the Mule distribution. Additionally, MuleSoft regularly and consistently checks for security issues within the Mule software itself.

Managing Security Issues

Whenever MuleSoft detects a security vulnerability in Mule or any of the third-party libraries included therein, we invoke the following process.

  1. Security Support Representative assesses the vulnerability, then calculates its potential as a security risk.

  2. Support Representative creates a ticket to address the vulnerability, prioritizing its solution as critical if warranted.

  3. MuleSoft’s development team addresses critical issues immediately; any less-threatening issues are resolved within a timeframe commensurate with their potential as a security risk.

  4. MuleSoft distributes any critical fixes to Mule as patches, and includes any and all fixes to address security issues in the distribution of the next Mule maintenance release.