Y
Hacker News
new
|
ask
|
show
|
jobs
by
patmorgan23
862 days ago
There are "security researchers" who grep GitHub for the words 'password' or 'secret' and blindly file CVE's if they find any hits.
1 comments
stonogo
861 days ago
and those CVEs are rejected or revoked. There are bad actors everywhere; they're not a good excuse to stop trying.
link
worthless-trash
861 days ago
There are -many- software vendors and developers that wont accept or even respond to security researchers. You are absolutely correct.
link