 |
Post Aqr3DYpA4Ljy1OYcN6 by [email protected] |
 |
More posts by [email protected] |
|
Post #Aqr2t59oezeODgSBFI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Why does GitHub Security Lab do research like @mmolgtm ’s recent work on bypa… |
|
|
|
Post #Aqr2vRBzhm8x8iayuW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
First an important point: we only research open source code, which means that m… |
|
|
|
Post #Aqr2yv3z6Q50eQVdPk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
In this particular case, @mmolgtm found a bug in Arm Mali, which is an open so… |
|
|
|
Post #Aqr32XCDmXlVmq5NLs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Open source software is the foundation of much of the world’s software. So wh… |
|
|
|
Post #Aqr34blPlpyKX3XHyi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
GitHub Security Lab sits within @githubsecurity and we focus exclusively on ope… |
|
|
|
Post #Aqr35iTkI1pxeEneW8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
First, we run the GitHub Advisory Database, which is a comprehensive database o… |
|
|
|
Post #Aqr36MfUrl0KIGbbO4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Second, we share information around secure coding practices, through blogs and … |
|
|
|
Post #Aqr392fvejz59g5I6i by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Third, we use GitHub’s CodeQL to scan thousands of open source repositories f… |
|
|
|
Post #Aqr3DYpA4Ljy1OYcN6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
And fourth, we do deep research on critical open source projects. @mmolgtm ’s… |
|
|
|
Post #Aqr3ER8W8bJET41q2S by [email protected] |
|
0 likes, 1 repeats |
|
|
|
The work that we do feeds into GitHub’s security products. For example, the a… |
|
|
|
Post #Aqr3FuOcptGTVNGUHQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Similarly, our work with CodeQL provides feedback to the code scanning team to … |
|
|
|
Post #Aqr3GtZNOX6rENlR0S by [email protected] |
|
0 likes, 1 repeats |
|
|
|
And these activities also benefit open source, because GitHub security products… |
|
|
|
Post #Aqr3HODTS10eHQksfg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Our deep research work is primarily intended to inspire the community, so that … |
|
|
|
Post #Aqr3pbkRe8e05tUf20 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GitHubSecurityLab thank you for the explanation. Btw the link is not a link he… |
|
|
|
Post #Aqr3pbqTHjSsOaJTQO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@alexanderadam Thanks, we replaced the short url with the real one! |
