GitHub no longer wants users to name and shame security flaws

Rate this post

GitHub allows developers to notify their peers of discovered vulnerabilities – quietly. The company says this will avoid the “name and shame” game and prevent exploitation that could result from public disclosure.

In a blog post (opens in new tab) earlier this week, GitHub said that given the way the platform is currently set up, sometimes there is no option but to make a vulnerability public – and before malware removal software can be deployed – to warn potential threat actors.

Leave a Reply

Your email address will not be published. Required fields are marked *