daily threat intelligence Archives

Google’s open-source GUAC initiative will make information for securing the software supply chain readily available to everyone.

Posted on October 20, 2022

GUAC will allow developers, auditors, and risk management teams to evaluate risk more easily in their codebases. What: Google is seeking contributors to a new open-source project it has launched called Graph…

Vuln in GitHub Enterprise server could enable RCE on SVNBridge

Posted on October 19, 2022

Vulnerability has not been assigned a severity rating yet [242 words]. What: A deserialization of untrusted data vulnerability (CVE-2022-23734 )exists in multiple GitHub Enterprise Server versions that could potentially let a remote attacker execute…