Vultron
Vultron copied to clipboard
CERTCC
Vultron is a protocol for Coordinated Vulnerability Disclosure
**Describe the bug** Multiple $LaTeX$ elements in the page https://certcc.github.io/Vultron/reference/ssvc_crosswalk/ are broken. **To Reproduce** Steps to reproduce the behavior: 1. Go to https://certcc.github.io/Vultron/reference/ssvc_crosswalk/ 2. Observe broken $LaTeX$ rendering in various...
Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. Release notes Sourced from actions/checkout's releases. v6.0.0 What's Changed Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248 Persist...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
### Receiver Accepts Offered Report ```mermaid sequenceDiagram autonumber actor finder as Reporter box Coordination Service participant inbox participant accept_hdlr as AcceptHandler end box APIv1 participant offers participant reports participant cases...
### Receiver Invalidates and Holds Offered Report ```mermaid sequenceDiagram autonumber actor finder as Reporter box Coordination Service participant inbox participant reject as Tentative RejectHandler end box APIv1 participant offers participant...
### Receiver Invalidates and Closes Offered Report ```mermaid sequenceDiagram autonumber actor finder as Reporter box Coordination Service participant inbox participant reject as RejectHandler end box APIv1 participant offers participant reports...
### Spawn Case Actor from Report ```mermaid sequenceDiagram autonumber actor finder as Reporter box Coordination Service participant inbox participant accept_hdlr as AcceptHandler end box Case Service participant c_inbox as inbox...
Stub out the inbox handlers required for the _Initializing a Case_ process https://certcc.github.io/Vultron/howto/activitypub/activities/initialize_case/ This involves: - CreateCase - AddReportToCase - AddParticipantToCase - AddNoteToCase
Some elements of CVSSv4 vectors have implications for interaction with Vultron states. We should map those out as a crosswalk similar to https://certcc.github.io/Vultron/reference/ssvc_crosswalk
Inspired by CERTCC/SSVC#314, the Vultron docs should also reference the following FIRST frameworks: - FIRST [CSIRT Services Framework](https://www.first.org/standards/frameworks/csirts/csirt_services_framework_v2.1) - FIRST [PSIRT Services Framework](https://www.first.org/standards/frameworks/psirts/psirt_services_framework_v1.1) Perhaps starting with crosswalk tables similar to...