“The vulnerability might be in the proof-of-concept”
This is a common pattern I see for reporters to open source projects, where the proof-of-concept itself contains the vulnerability, not the project.
👉 sethmlarson.dev/the-vulnerabil…
#security #opensource #oss #vulnerability
The vulnerability might be in the proof-of-concept
The Security Developer-in-Residence role at the Python Software Foundation is funded by Alpha-Omega. Thanks to Alpha-Omega for sponsoring security in the Python ecosystem. I'm on the...sethmlarson.dev