The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by helping mature and advocate well-managed vulnerability reporting and communication.
Hello! My name is Matthew Dressman and I'm from the Microsoft Security Response Center (MSRC) where I lead vulnerability response engineering. My primary focus is on the platform and tooling supporting ingestion of security and privacy reports from the security research community, automation of vuln assessment, patch lifecycle management, etc., and ultimately release of the security updates and CVEs into the world each month on Patch Tuesday. Happy to share more if you're interested 😉.
I'm extremely passionate about user experience as well as developer experience and I'm excited to contribute in this WG to try and standardize and improve the overall process of managing vulnerabilities.
Before I joined Microsoft, I worked on a number of startups and have a deep appreciation for OSS and the open source community,
Hello! My name is Matthew Dressman and I'm from the Microsoft Security Response Center (MSRC) where I lead vulnerability response engineering. My primary focus is on the platform and tooling supporting ingestion of security and privacy reports from the security research community, automation of vuln assessment, patch lifecycle management, etc., and ultimately release of the security updates and CVEs into the world each month on Patch Tuesday. Happy to share more if you're interested 😉.
I'm extremely passionate about user experience as well as developer experience and I'm excited to contribute in this WG to try and standardize and improve the overall process of managing vulnerabilities.
Before I joined Microsoft, I worked on a number of startups and have a deep appreciation for OSS and the open source community,
Looking forward to collaborating! ✌