-
It might be good to extend the criteria, or at least add more explanatory material about vulnerability reporting, per this article: ["New open source effort: Legal code to make reporting security bugs…
-
Snyk Advisor is a quick way to see if a package is *safe* to use. This might be used to pre-screen data app frameworks.
Both Streamlit and Dash score 97/100 points. Panel scores 90/100 points.
S…
-
Dear PluckCMS team,
We are writing to you from INCIBE (https://www.incibe.es), the National Institute of Cybersecurity of Spain, about a vulnerability reported by an external researcher in one of y…
-
@crystalhazen and I were discussing how we could leverage some of the things we've discussed and turn it into an MVP that we could see some value out of, the following is what we came up with.
## P…
-
Hello,
I'm an independent security researcher performing security research under the [GitHub Security Lab Bug Bounty Program](https://securitylab.github.com/). I believe I may have found a security v…
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.313
The Linux Kernel
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wsslib=linux
Foun…
-
- Tracking how to handle responsible security disclosure at the OpenJSF in https://github.com/openjs-foundation/cross-project-council/issues/326.
- The [Node.js Security WG](https://github.com/nodejs…
tobie updated
4 years ago
-
Collecting several discussions, there are questions about how CNA membership is maintained.
https://github.com/ossf/wg-vulnerability-disclosures/pull/139
Required activity, publishing CVE Record…
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.87
The Linux Kernel
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wsslib=linux
Found …
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.30
Apache Software Foundation (ASF)
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wss…