Head Topics

Google’s open-source bug bounty aims to clamp down on supply chain attacks

Australia News News

Google’s open-source bug bounty aims to clamp down on supply chain attacks
Australia Latest News,Australia Headlines
  • 📰 verge
  • ⏱ Reading Time:
  • 36 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 18%
  • Publisher: 67%

The company’s putting its money where its mouth is.

, but it’s almost impossible to check over all the code a project uses. Incentivizing the community to check through dependencies and first-party code helps Google cast a wider net., payouts from the Open Source Software Vulnerability Rewards Program will depend on the severity of the bug, as well as the importance of the project it was found in .

“Researchers can now be rewarded for finding bugs that could potentially impact the entire open source ecosystem.” Google also says that it doesn’t want people poking around at third-party services or platforms it uses for its open-source projects. If you find an issue with how its GitHub repository is configured, that’s fine; if you find an issue with GitHub’s login system, that’s not covered.

For researchers who aren’t motivated by money, Google offers to donate their rewards to a charity picked by the researcher — the company even says it’ll double those donations. Obviously, this isn’t Google’s first crack at a bug bounty — it had some form of vulnerability reward program for

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

verge /  🏆 94. in US

Australia Latest News, Australia Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Alabama’s beignet boom: Mo’Bay Beignets finds sweet prospectsAlabama’s beignet boom: Mo’Bay Beignets finds sweet prospectsThe first café opened in in February 2020. Less than three years later, Mo’Bay has stores in Mobile, Orange Beach, Tuscaloosa, Auburn and Hattiesburg, with its biggest one yet one coming in Saraland.
Read more »

JPMorgan Says Apple's Mac Supply Has NormalizedJPMorgan Says Apple's Mac Supply Has NormalizedApple’s Mac supply chain woes have normalized according to analysts at JP Morgan, who said lead times have moderated to a week or less across geographies.
Read more »

Driving Toward the Automobile’s Electric, Autonomous FutureDriving Toward the Automobile’s Electric, Autonomous FutureGM president Mark Reuss talks with WIRED about how to sell EVs, his optimism for robot cars, and why the company shifted more of its supply chain back to the US.
Read more »

Everyday foods and cosmetics that use wild plants may be harming the environmentEveryday foods and cosmetics that use wild plants may be harming the environmentThe chocolate you eat, the moisturizer you use, the tea you drink—these everyday products contain ingredients from wild plants. But little thought is given to where they’re found or how they’re harvested
Read more »

Retailers expected to have more sales this holiday seasonRetailers expected to have more sales this holiday seasonInflation and supply chain issues resolving could result in more sales this holiday season than previous years.
Read more »

A US Freight Rail Crisis Threatens More Supply-Chain ChaosA US Freight Rail Crisis Threatens More Supply-Chain ChaosFederal regulators and the White House have been scrambling to prevent poor service and a possible strike from jamming up a vital but often overlooked network.
Read more »



Render Time: 2025-03-05 00:12:20