daniel:// stenberg://

1 year ago • •

daniel:// stenberg://
1 year ago • •

All existing #curl CVEs are now available as #JSON: curl.se/docs/vuln.json

All individual issues are also available as JSON, like for example CVE-2023-27538 like this: curl.se/docs/CVE-2023-27538.js…

Enjoy!

in reply to daniel:// stenberg://

chrysn

in reply to daniel:// stenberg:// • 1 year ago • •

Nice, it's a documented exchange format <ossf.github.io/osv-schema/>. As I was looking into how to document @RIOT_OS vulnerabilities earlier and was a bit taken aback by the complexity of CSAF <github.com/oasis-tcs/csaf>, this looks like a good alternative.

GitHub - oasis-tcs/csaf: OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code

OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code - ...

^GitHub

@RIOT

⇧

daniel:// stenberg://

daniel:// stenberg:// 1 year ago • •

chrysn

GitHub - oasis-tcs/csaf: OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code

daniel:// stenberg://
1 year ago • •