Content by jonathan evans (1)

A year of open source vulnerability trends: CVEs, advisories, and malware

by Jonathan Evans
Jonathan Evans reviews GitHub’s 2025 open source vulnerability data—reviewed advisories, malware advisories, and CVE publishing—and explains what the trends mean for triage, prioritization (CVSS/EPSS), and using tools like Dependabot and GitHub’s advisory workflows to protect projects.
News

End of content

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.