GitHub makes Advisory Database public to improve software supply chain security

Read Time:44 Second

Software development platform GitHub has made its Advisory Database open to community contributions allowing anyone to contribute insight and intelligence on security vulnerabilities to help improve software supply chain security. The full contents of the database will also now be published to a new, freely accessible public repository under Creative Commons license. Experts say data sharing of this kind is key to improving the security of software supply chains and addressing software-related risks.

Security community to benefit from free and open data

Millions of developers and companies use GitHub to build, ship and maintain software. By making its Advisory Database publicly open to community contributions, the firm said security researchers, academics and enthusiasts will be able to provide, share and benefit from additional information and context to further the community’s understanding and awareness of security advisories.

To read this article in full, please click here

Cyber Security News

China-Aligned “Operation Tainted Love” Targets Middle East Telecom Providers

SharePoint Phishing Scam Targets 1600 Across US, Europe

Europe’s transport sector terrorised by ransomware, data theft, and denial-of-service attacks

Security at the core of Intel’s new vPro platform

New Post-Exploitation Attack Method Found Affecting Okta Passwords

Fake GPT Chrome extension steals Facebook session cookies, breaks into accounts

Critical flaw in AI testing framework MLflow can lead to server and data compromise

New vulnerabilities found in industrial control systems of major vendors

Mass Ransomware Attack