Search

Companies can help us provide collective defense. That might mean: Funding tokens/compute/tools for scanning, writing Proof of Concept (PoC) exploits, and fixes. Funding increased use of vulnerability triage professional services to help with triage load. Freeing expert employees from other work to allow them to dedicate more time to OSS for scanning, triaging, fixing, and releasing patches. Please contact your open source maintainers directly, and reach out to projects@cncf.io if you’d like to coordinate across projects.