CVSS • Post Status

Open Source Communities: You May Not Be Interested in CISA, But CISA is Very Interested in You

ByDan Knauss October 3, 2022October 3, 2022

United States national security interests are poised to become more invested in and engaged with open source projects classified as public infrastructure. From Log4j to the Securing Open Source Software Act, how did it all come together in 2022, and what may lie ahead?

Notes | Planet | Security

When the Free Rider is Government

ByDan Knauss August 24, 2022August 24, 2022

Chinmayi Sharma argues our digital infrastructure is built on open source, and it cannot provide adequate security so governments should help out.

Security

HackerOne opens possibilities for WordPress vulnerability hunting

ByBrian Krogsgard May 16, 2017August 16, 2022

HackerOne is a popular platform for vulnerability hunting and disclosure, built on a bounty system for properly disclosed software issues. As Aaron Campbell notes on the WordPress blog, “It provides tools that improve the quality and consistency of communication with reporters, and will reduce the time spent on responding to commonly reported issues. This frees…

End of content

Post Status is proudly supported by great partners