(Feel free to update this issue with your own ideas)
It would be interesting to see how our VCC security discussion data compares with the rest of the security discussion going on with Apache. So, let's try to identify emails with security-related keywords.
To start this list:
Go over the security-discussed emails that we know of in our data and extract keywords from them.
Go over the CVE descriptions for keywords
The CWE might be helpful, but let's not dump a lot of time into that
Contact Amiangshu and ask him what he did in his most recent papers to see if there's something we're missing.
(Feel free to update this issue with your own ideas)
It would be interesting to see how our VCC security discussion data compares with the rest of the security discussion going on with Apache. So, let's try to identify emails with security-related keywords.
To start this list: