#hackerone

[ follow ]
#nodejs #signal-score #vulnerability-reporting #security-triage #executive-appointments
fromThe NodeSource Blog - Node.js Tutorials, Guides, and Updates
2 weeks ago

Understanding Node.js' New Signal Requirement for Security Reports

This decision addresses a critical operational need. While Node.js values open collaboration, the volume of low-quality security reports has increased drastically, driven largely by automated tools and generative AI. The problem: Between December and January, the project received over 30 vulnerability reports, compared to the usual average of 6 or 7 per month. Many of these submissions lacked technical merit or turned out to be false positives.
Node JS
Information security
fromChannelPro
2 months ago

HackerOne eyes enterprise growth with double C-suite appointment

HackerOne appointed Stephanie Furfaro as CRO and Stacy Leidwinger as CMO to accelerate growth in threat exposure management and AI-native security offerings.
Artificial intelligence
fromArs Technica
9 months ago

Open source project curl is sick of users submitting "AI slop" vulnerabilities

AI-generated vulnerability reports are misleading and can be easily identified.
There's a need for better tools and infrastructure to counter the misuse of AI in security reporting.
[ Load more ]