Google’s open-source bug bounty aims to clamp down on supply chain attacks

-
An important and sometimes overlooked part of security | Photo by Amelia Holowaty Krales / The Verge

Google has introduced a new vulnerability rewards program to pay researchers who find security flaws in its open-source software or in the building blocks that its software is built on. It’ll pay anywhere from $101 to $31,337 for information about bugs in projects like Angular, GoLang, and Fuchsia or for vulnerabilities in the third-party dependencies that are included in those projects’ codebases.

While it’s important for Google to fix bugs in its own projects (and in the software that it uses to keep track of changes to its code, which the program also covers), perhaps the most interesting part is the bit about third-party dependencies. Programmers often use code from open-source projects so they don’t continuously have to reinvent the...

Continue reading…



from The Verge - All Posts https://ift.tt/tCPN2Zf

Comments

Post a Comment

Popular posts from this blog

Adobe Acrobat Pro DC v2020.009.20074

-
Image
Adobe Acrobat Pro DC v2020.009.20074 Description Acrobat DC with Document Cloud services is packed with all the tools you need to convert, edit and sign PDFs. It’s just as mobile as you are. So you can start a document at work, tweak it on the train and send it for approval from your living room — seamlessly, simply, without missing a beat.It’s packed with smart tools that give you even more power to communicate. Create and edit PDF files with rich media included, share information more securely, and gather feedback more efficiently. Adobe Acrobat Pro DC software is the advanced way for business professionals to create, combine, control, and deliver more secure, high-quality Adobe PDF documents for easy, more secure distribution, collaboration, and data collection. DOWNLOAD HERE Adobe Acrobat Pro DC 2020 with Patch Features: Edit PDF files With Adobe Acrobat Pro DC, you can make minor edits to text and images right in your PDF file without requiring the original document o
Read more

Verizon’s myPlan lineup adds a pricier Unlimited Ultimate option

-
Image
Illustration by Alex Castro / The Verge Verizon will offer a new $90 monthly cellphone plan called Unlimited Ultimate, announced in an update to the May blog post that announced its myPlan lineup. It offers 60GB of mobile hotspot data (double what you get with the $80 Unlimited Plus plan), 10GB of unthrottled international data, and includes access to the company’s 5G Ultra Wideband network that's a mix of the company’s C-band wireless signal and its faster mmWave 5G. T-Mobile similarly just introduced an expensive new "unlimited" data plan to its Go5G line with the $100 per month Go5G Next plan to complement its C-band spectrum. It offers slightly less hotspot data at 50GB but comes with Netflix Basic and Apple TV Plus and the option to upgrade your phone on a yearly... Continue reading… from The Verge - All Posts https://ift.tt/Hu3mTRj
Read more

Nomad’s first Qi2 charger is shipping now for $10 less than its MagSafe model

-
Image
The Nomad Stand offers 15W of wireless iPhone fast charging for $100. | Image: Nomad Nomad’s Stand is the latest Qi2 charger to hit the market, offering up to 15W of wireless charging speed to Qi2-compatible phones like the iPhone 15. The accessory was announced in late December , but it’s now shipping in a choice of black or white for $100 from Nomad’s website . It’s $100 price point makes the Stand $10 cheaper than Nomad’s equivalent MagSafe model, the Stand One , and offers the same “up to 15W” charging speeds and magnetic attachment compatibility as Apple’s MagSafe (Apple helped develop the Qi2 charging standard). The bad news is that Nomad’s $100 asking price doesn’t include the required 20W power adapter — you just get a USB-C to USB-C cable. Image: Nomad Nomad’s Stand in black. Nomad’s... Continue reading… from The Verge - All Posts https://ift.tt/5KavIz2
Read more