Eclipse Temurin Security Audit Has Been Completed
Today, the Eclipse Foundation released the results of our security audit for the Eclipse Temurin project . Findings from the...
Eclipse Kuksa Security Audit Has Been Completed
Today, the Eclipse Foundation released the results of our security audit for the Eclipse Kuksa project . Findings from the...
202404-01 Eclipse Foundation Security Advisory
The Eclipse Foundation Security Team has been made aware of the vulnerability VU#421644 affecting multiple HTTP/2 implementations, that could cause...
Eclipse Foundation CVE Program in 2023
Security issue tracker Bugzilla was the main reporting mechanism previously. In 2023, we moved the primary tracker to GitLab. The...
Learning about security: by example
During this year's EclipseCon, the Eclipse Foundation staff offered a tutorial on best practices in open-source projects. For people who...
SECURITY.md: should I have it?
You might have noticed a SECURITY.md file in git repositories of multiple projects. Should you have it? The answer is...
How to Report a Security Issue in an Eclipse Foundation Project?
Have you found something that looks like a security issue in an Eclipse Foundation project? Here is a description of...
Eclipse Foundation Default Security Tracker Moves!
Eclipse Foundation projects share a default way to report security issues. Security researchers and all concerned users can create private...