Rocky Security Updates Urgency - Competitive Gap

Situation

Flagged to Max, Justin, and Nathan that Rocky security update tagging is a critical competitive gap needing urgent attention. Shared community post recommending Alma over Rocky because Alma correctly tags security updates and has timelier updates.

Reasoning

This is a direct competitive threat to Rocky Linux - CIQs core product. Security update tagging affects enterprise customers who need to run dnf update --security. Community perception shapes adoption - losing the recommended distro position is damaging to brand and revenue. Max and Justin own the teams that can fix this (Core Distro, Release All Things).

Additional Context

Community member posted that after a year of running both Rocky and Alma, they recommend Alma because: 1) Alma correctly tags security updates as such (Rocky doesnt or does it differently), 2) Alma has timelier updates including urgent ones. TPS report shows related work: RESF - Rocky Linux updateinfo is missing half of Security Advisories (BLOCKED), Errata - updateinfo.xml Generation (DISCOVERY).

Observed Evidence

Slack message to Max, Justin, Nathan: Weve got to rapidly get to a place where this isnt true. Linked post stated: if you are on the fence about which to pick to fill a CentOS shaped hole in your heart, Id recommend Alma. Reasons: 1) correctly tags security updates 2) Has timely updates including urgent ones ahead of upstream release.

Confidence Breakdown

Reasoning Depth Analysis