Can we add a section defining exactly what is meant by "backwards compatibility" here? It looks like this paragraph is meant to allow some sort of deprecation policy, and it'd be good to understand what kinds of things might change.

Would this make more sense without the work "backwards" here?

Give the new wording a try.

Is the 1 year support period a hard limit or just a minimum?

I would say a minimum. If we actually get help from the community backporting patches then it makes support much easier. That hasn't been the case in the past and things are left up to the maintainers for support, new features, reviews, and backports. If everyone carries the load it makes it much easier to support long term.

Adding at least here.

I assume this means "next minor or major"?

There should be an explicit contact mechanism for security issues rather than just asking the reporter to be discreet.

We will have to setup a security mailing list for these things.

It would also be desirable to have a documented GPG key (or multiple keys, if for individuals) with which sensitive issues can be protected. Some details about how security issues will be handled will also help. (e.g. how quickly will somebody acknowledge receipt of a report? Will non-public information be shared with other distributors prior to publication? etc) ISC has a rather comprehensive example of a security policy, split across two pages. I wouldn't necessarily suggest going that far, but it's worth reading.

I think it's worth calling out somewhere that because the GRPC API is covered by the stability guarantee, applications built against the 1.0 Go API will continue to work with the same versions that the stable GRPC API will, as the Go API leverages the GRPC API.

Added a note about this in the "Go API" section.

What else can be added in a minor release? Would a minor release also allow the addition of service calls, parameters, and return elements?

Is this about microformats or really just about opaque fields?

Opaque fields.

It would be valuable to a client if there were a list of explicitly opaque fields.

Right now, all fields should be treated opaquely.

Also, we should defer to the service proto for these considerations.

I think you mean non-exhaustive? Or it might be easier to phrase it as: This explicitly pertains to, but is not limited to, the list of components below.

currently recommended -> recommended ?

Even after API stabilization, vendoring would be preferred in Go world.

What does it stand for? Layout of /var/lib/containerd and /run/containerd?

Migration is done automatically for upgrade from single previous minor release, right?

I guess this section is mainly about the client library.
Does it apply for plugins as well?

Binary compatibility of plugin DLLs?

This does not exist at the moment

Agreed.
So, I meant it would be good to add plugin ABI to this "Not Covered" list.

@AkihiroSuda The plugin ABI is not part of the project, since we are supporting them for now.

It would be good to reference the fingerprint of the signing key(s) here (and more generally to get it into the WoT or at least widely distributed).

Right now, we don't really want to make a single signing key. I'll use https://keybase.io/stevvooe.

"within" is one word in this context I think,

The phrase "from two minor releases" is difficult to grok I think perhaps "upgrades spanning multiple minor releases"?.

Also I think it's either "There are no compatibility guarantees" or "There is no compatibility guarantee" rather than "There is no compatibility guarantees".

By my reading of the preceding paragraphs EOL for 1.0 is actually max(TBD+1 year, release of 1.1.0)?

What about metrics?

@stevvooe

typo: I think you're missing a word between "a" and "minor"

You may want to consider some (brief) period of overlap in support in case issues arise in the upgrade path between minor versions that are best addressed with patches to the previous (otherwise unsupported) release. Or maybe just call out the possibility that exceptions can be made in situations that interfere with a clean upgrade.

Would it be fine if we made this table the source of truth, over the policy?

It would also be desirable to have a documented GPG key (or multiple keys, if for individuals) with which sensitive issues can be protected. Some details about how security issues will be handled will also help. (e.g. how quickly will somebody acknowledge receipt of a report? Will non-public information be shared with other distributors prior to publication? etc) ISC has a rather comprehensive example of a security policy, split across two pages. I wouldn't necessarily suggest going that far, but it's worth reading.

typo: another missing word, between "overview" and "the".