The Node.js project just issued CVE IDs for 3 EOL versions
Is this a good idea or a bad idea? It depends who you ask
It's a weird discussion to follow, so I broke it down in a way that should offend all the involved parties
https://opensourcesecurity.io/2025/01-cve-for-end-of-life/
=> More informations about this toot | View the thread | More toots from joshbressers@infosec.exchange
text/geminiThis content has been proxied by September (3851b).