CVSS

Open Source Communities: You May Not Be Interested in CISA, But CISA is Very Interested in You

Dan Knauss

October 3, 2022

United States national security interests are poised to become more invested in and engaged with open source projects classified as public infrastructure. From Log4j to the Securing Open Source Software Act, how did it all come together in 2022, and what may lie ahead?

When the Free Rider is Government

Dan Knauss

August 24, 2022

NotesPlanet

Chinmayi Sharma argues our digital infrastructure is built on open source, and it cannot provide adequate security so governments should help out.

HackerOne opens possibilities for WordPress vulnerability hunting

Brian Krogsgard

May 16, 2017

Security

HackerOne is a popular platform for vulnerability hunting and disclosure, built on a bounty system for properly disclosed software issues. As Aaron Campbell notes on the WordPress blog, "It provides tools that improve the quality and consistency of communication with…