#ThisWeekInSecurity: #Git #Deep #Dive, #Mailchimp, and #SPF

First up, git has been audited. This was an effort sponsored by the Open Source Technology Improvement Fund (OSTIF), a non-profit working to improve the security of Open Source projects. The audit itself was done by researchers from X41 and GitLab, and two critical vulnerabilities were found, both caused by the same bad coding habit — using an int to hold buffer lengths.

https://hackaday.com/2023/01/20/this-week-in-security-git-deep-dive-mailchimp-and-spf/ #ThisWeekInSecurity