NodeBB on Nostr: How do you publicly disclose your #security #vulnerabilities We used to post them on ...
How do you publicly disclose your #security #vulnerabilities
We used to post them on our forum... sometimes on #GitHub, sometimes via changelog, sometimes not at all. It was pretty haphazard, involved a lot of manual steps, and we needed to do better.
So we decided to throw some #code (and some #nocode) at this problem and centralized it all while keeping a bunch of options open for interested parties 👇
https://community.nodebb.org/topic/17561/security-vulnerability-notifications
#appsec #netsec #bugbounty
We used to post them on our forum... sometimes on #GitHub, sometimes via changelog, sometimes not at all. It was pretty haphazard, involved a lot of manual steps, and we needed to do better.
So we decided to throw some #code (and some #nocode) at this problem and centralized it all while keeping a bunch of options open for interested parties 👇
https://community.nodebb.org/topic/17561/security-vulnerability-notifications
#appsec #netsec #bugbounty