Closed ivard closed 7 months ago
Minor suggestion: when describing a fix for a security issue, please reference the CVE identifier (CVE-2024-27304 in this case) if available. This helps SOC teams and in serious cases also CERT teams like NCSC-NL to identify vulnerable projects.
(NCSC-NL has done exactly this with the log4shell vulnerability: https://github.com/NCSC-NL/log4shell/blob/main/software/README.md)
Minor suggestion: when describing a fix for a security issue, please reference the CVE identifier (CVE-2024-27304 in this case) if available. This helps SOC teams and in serious cases also CERT teams like NCSC-NL to identify vulnerable projects.
(NCSC-NL has done exactly this with the log4shell vulnerability: https://github.com/NCSC-NL/log4shell/blob/main/software/README.md)