curl Open Source Project Security Reporting Policy
Article URL: Comments URL: Points: 13 # Comments: 2
Read the full articleYou might also wanna read
How to write excellent vulnerability reports for open source projects
Over the years, we have received, read and handled way over one thousand vulnerability reports filed against curl. We have seen most kinds.
daniel.haxx.se·18d agoAnnouncing the 2017 State of Open Source Security Report
Today we’re excited to launch the 2017 State of Open Source Security Report! The full report is available as a free PDF, and the highlights
Inside a CVE dispute: How the curl project handles vulnerability assignments as a CNA
A few years years ago the curl project signed up and became a CNA. This means that we are masters of and can allocate our own CVE identifier
daniel.haxx.se·19d agoResponsible disclosure: the impact of vulnerability disclosure on open source security

The State of Open Source Security 2020
This report sheds light on the current security posture of open source software and reflects on security concerns, trends in vulnerabilities
Census II Report on Open Source Software
The Linux Foundation and the Laboratory for Innovation Science at Harvard have just released a new report: “Vulnerabilities in the Core: Pre

Comments
Sign in to join the conversation.
No comments yet. Be the first.