Decentralization Manager proposal Decentralization Manager proposal #298 - Milestone 2: Ongoing Maintenance

OPENIssue
by pedrodneves16-06-2026
1M CC requested
View on GitHub ↗← All Proposals

Milestone 2: Ongoing Maintenance

| Field | Details | | :---- | :---- | | Estimated Delivery | Begins after Milestone 1 completion; covers 12 months of support | | Focus | Keeping the open-source Decentralization Manager codebase healthy: bug fixes, security patches, dependency bumps, CI/CD, and external PR triage | | Team | BitSafe |

| Milestone | CC Amount | Payment Trigger | | :---- | :---- | :---- | | M2 - Ongoing Maintenance (12 months) | 1,000,000 CC | Paid against quarterly maintenance reports |

Maintenance is staffed at 0.25 FTE for 12 months, totaling 480 engineering hours. This covers:

  • Security patch SLA: critical patches within 7 days of disclosure, high-severity within 30 days
  • Dependency bumps: monthly cadence on Canton, DAML SDK, and Rust toolchain
  • External PR triage: target first response within 5 business days
  • CI/CD upkeep and release tagging
  • No new features, no roadmap work, no API surface changes

Acceptance Criteria. The open-source repository remains in a healthy state (green CI, no outstanding critical vulnerabilities, external PRs triaged within a reasonable SLA) across the 12-month maintenance window.

_Originally posted by @pedrodneves in https://github.com/canton-foundation/canton-dev-fund/issues/298#issuecomment-4719326716_