“The vulnerability might be in the proof-of-concept”

This is a common pattern I see for reporters to open source projects, where the proof-of-concept itself contains the vulnerability, not the project.

👉 sethmlarson.dev/the-vulnerabil…

#security #opensource #oss #vulnerability