"Almost every software application, website, mobile device, and Internet of Things device - including those used by small businesses, the Federal Government, and the national security community - incorporates open-source software to enable and scale rapid application development processes," the administration noted.
A report of the Log4Shell incident by the Cyber Safety Review Board noted that open-source projects "generally do not have dedicated coordinated vulnerability disclosure and response teams."
#white-house #open-source-software #cybersecurity #os3i #software-development #vulnerability-disclosure
[
add
]
[
|
|
...
]