The security and stability of a system is our priority.
We subscribe to the notifications made by the Drupal security team (Wednesday) and set aside time to evaluate each of the affected components and the degree of the impact on the project.
Our work methodology, using branches, allows us to act quickly and make an emergency deploy to production if needed.
We perform weekly updates and maintenance so that the project does not become obsolete, thus reducing risks by gradually integrating improvements.
Our continuous integration system allows us to evaluate whether new components behave as expected. An upgrade of a component will improve its stability, its performance, fix bugs or incorporate new features.