Eclipse Foundation projects can request to use GitHub Private Vulnerability Reporting . This feature allows committers of projects hosted on GitHub to receive potential vulnerability reports in a confidential way. When you are working on an existing vulnerability report, you might see the “Request CVE” button. Please do not use...
Earlier this year, a significant group of open source foundations including Apache Software Foundation, Blender Foundation, PHP Foundation, Python Software Foundation, Rust Foundation, and the Eclipse Foundation – joined forces to launch an exciting new initiative. This initiative aims to help all open source participants navigate and comply with governmental...
In 2023, GitHub introduced new powerful macOS runners for GitHub Actions. These runners have a considerable higher amount of processors / memory and disk space allocated to them to speed up the execution of workflows. This advantage comes at a cost though, as billing per minute of executed workflow time...
Five weeks from now, we are hosting our first-ever Adoptium Summit! This half-day free event is virtual so that you can join from anywhere in the world. If you belong to the Adoptium community, are an Eclipse Temurin user, or are planning to migrate from a different JDK to an...
Welcome to issue number two hundred and forty of Hashtag Jakarta EE! The work with Jakarta EE 11 continued while I was at JConf Dominicana, JCrete, and a short vacation thereafter. Since a couple of specification projects have published service releases to fix minor issues in their API artifacts or...
Attending JCrete has become a tradition for me. It is high up there among my favorite events and probably my favorite location. Whenever possible, I take some time off before or after the conference to explore the Island of Crete. Every day at JCrete starts with a morning run. You...
Learn about Eclipse Kuksa’s journey from research project to future vehicle software building block What’s cooking for Eclipse Kuksa? We recently caught up with four members of the project team, Erik Jaegervall, Sven Erik Jeroschewski, Lukas Mittag, and Sebastian Schildt, to find out what the automotive project is currently working...
As Oniro wrapped up 2023 with significant milestones like signing the agreement with the OpenAtom Foundation to strengthen the cooperation between Oniro and OpenHarmony, and showcasing Oniro at Eclipsecon with demos and an engaging Birds of a Feather event , 2024 kicked off with a surge of promising opportunities. Thanks...
Welcome to issue number two hundred and thirty-nine of Hashtag Jakarta EE! I am taking a week off, so this will be a rather short update. Last week was the week of JCrete 2024. I will publish a blog post about this year’s edition as soon as I am home...
A vulnerability description includes several fields, like the title and description. However, one is causing difficulties for people writing CVE (Common Vulnerability Enumeration) entries: the CVSS (Common Vulnerability Scoring System) vector. CVSS is an important field because it answers a fundamental question about the vulnerability: "How serious is it?" A...