-
After discussion on gitter, I would like to continue building out a bug bounty program for Grin.
Others have also discussed interest in such a program, and believe it would benefit project security…
-
Snyk Advisor is a quick way to see if a package is *safe* to use. This might be used to pre-screen data app frameworks.
Both Streamlit and Dash score 97/100 points. Panel scores 90/100 points.
S…
-
### Issue Summary
Supervisorctl Status command not working so it might be leading to `autorestart` not working for programs.
### Steps to Reproduce
1. Login into adhoc worker container
2…
-
@yegor256, similar to what one finds in companies doing in https://www.hackerone.com/ I suggest we define a bug bounty program for both Zold and the web wallets projects.
Here's more detail of what…
-
Possible content to use in a generic SECURITY.md policy file:
# Reporting Security Issues
Adobe values the contributions of the security research community, and we look forward to working with y…
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.313
The Linux Kernel
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wsslib=linux
Foun…
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.30
Apache Software Foundation (ASF)
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wss…
-
## CVE-2018-8292 - High Severity Vulnerability
Vulnerable Library - system.net.http.4.3.0.nupkg
Provides a programming interface for modern HTTP applications, including HTTP client components that a…
-
## CVE-2021-3444 - High Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.87
The Linux Kernel
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wsslib=linux
Found …
-
So this is a touchy subject. There are a lot of strong feelings both ways about this. First, let's go back to the definition of an incident and breach in veris. An Incident is a security event that…