Curl will end its bug bounty program by the end of January due to excessive AI generated reports ~comp security.cyber open source Link 61 votes
Death by a thousand slops | daniel.haxx.se ~comp open source security.cyber Article 999 words 36 votes
The lead developer of curl analyzed its known security vulnerabilities and determined that half of them are related to it being written in C ~comp security programming languages Article 1528 words 12 votes