Pelle Wessman
For dev tools and other projects where Denial of Service is not a concerning vulnerability its a wise idea to filter those out so that the noise of DoS vulnerabilities doesn't drown out the rest. Here's a filter for GitHub's #Dependabot alerts: gist.github.com/voxpelli/d68...
This filter documents the specific CWE family of resource exhaustion, uncontrolled iteration/recursion, and algorithmic-complexity weaknesses that are most likely to show up as dependency-driven denial-of-service risks

This filter documents the specific CWE family of resource exhaustion, uncontrolled iteration/recursion, and algorithmic-complexity weaknesses that are most likely to show up as dependency-driven de...

Gist
Mar 31 at 8:03pmWeb
Show threadPelle WessmanMar 31
Letting one get drowned in (Re)DoS vulnerabilities to the degree that one develops severe alert fatigue is dangerous. Just look at today's security incident – those things are dangerous to everyone.

RE: https://bsky.app/profile/did:plc:n6f3j47vjucu5ijwdmow7n2w/post/3mid7jgod6c2h