Everyone that manages security reports for Open Source projects have been getting a higher workload because of AI. Both real reports and just slop - reports including vulnerabilities in code that doesn't exist. For some, this is becoming a denial of service attack, with developers having to spend valuable, and in some cases unpaid, time to sort out what's real and may be a vulnerability.

Jarek Potiuk, member of The Apache Software Foundation will talk about this on the GVIP Summit Wednesday Jan 28th in Brussels. We still have a few seats available - but hurry up to register!

gvip-project.org

#NVD #CVE #EUVD #EUCRA #CRA

🔥 The EU Vulnerability Database (EUVD) is LIVE at euvd.enisa.europa.eu/homepage 🇪🇺💪

Finally, we've got our OWN vulnerability tracking system that's not dependent on …

Three awesome dashboards: critical vulns, actively exploited stuff, and EU-coordinated disclosures. … intel we need to patch our systems PROPERLY!

This is digital sovereignty and resilience in action, folks! No more single points of failure in global vuln tracking. 🧙‍♂️🖥️

#Cybersecurity #EUVD #DigitalSovereignty #FOSS #NIS2

EUVD

European Vulnerability Database

^{euvd.enisa.europa.eu}