Adam Shostack  Dec 21, 2022

Is the European Commission also paying Mastodon admins to patch their instances?

https://commission.europa.eu/news/european-commissions-open-source-programme-office-starts-bug-bounties-2022-01-19_en

European Commission's Open Source Programme Office starts bug bounties

Ethical hackers wanted, for fixing bugs in LibreOffice, LEOS, Mastodon, Odoo and CryptPad.

European Commission
Show threadAdam Shostack  Dec 21, 2022
Is anyone scanning the fediverse to see what the patching practices are today?
Show threadAdam Shostack  Dec 21, 2022
Less sarcastically I am confident that setting up a bug bounty for open source projects that aren’t ready for them, and not funding submission triage is actively counterproductive
Show threadMez
@adamshostack omg tots. There’s not a reblog with comments? Ok then.
Dec 21, 2022 at 3:33amWeb