You may have received a notification that a ticket about a security advisory was logged on your behalf - no need to panic, we’re letting you know that we’ve got an eye on it and we want to keep you in the loop!
Drupal issues security advisories which alert us of updates that will be released soon. We keep track of these advisories, so we can assess how they might affect your site and if we need to take action.
If we assess that the advisory is relevant to your site, we log a Freshdesk ticket on your behalf to let you know that we’re looking into it. We’ll further review the advisory - deciding if it’s less critical, moderately critical, or critical - and update you on the action we suggest is needed.
For critical updates, it may be necessary for us to apply the update to your live site as soon as it is released (this is why Drupal uses security advisories to give advance warning of updates). If the update is not as urgent, it may be applied to a test/dev version of your site first.
In the ticket, we’ll let you know of any action you need to take (such as testing or signing off updates), otherwise you can rest easy in the knowledge that your website is in good hands.