sei-renae
sei-renae
The target audience for the Explanation is a non-expert, and per diataxis.fr, should be able to casually read this and get an overview of what is SSVC. This PR: Adds...
As an enterprise security engineer with • automated scanning tools (such as jfrog xray) that detect known CVEs in my software I want to • have a tool to program...
## Context Per (diataxis.fr/reference](https://diataxis.fr/reference/) >Reference material contains propositional or theoretical knowledge that a user looks to in their work. > >The only purpose of a reference guide is to describe,...
**Is your feature request related to a problem? Please describe.** The certcc.github.io homepage index card titles are hyperlinks, but the SSVC index card titles are not hyperlinks. Hyperlinked titles are...
The Safety Impact page at https://certcc.github.io/SSVC/reference/decision_points/safety_impact should be revised for the following: - The [Gathering Info section](https://certcc.github.io/SSVC/reference/decision_points/safety_impact/#gathering-information-about-safety-impact) is dissimilar from other Gathering Info pages and is more similar to "Considerations...
Invariant Labs published [this vulnerability](https://invariantlabs.ai/blog/mcp-github-vulnerability) on May 26, 2025. I reproduced the issue using OAuth and personal access tokens. - I created a broad-scope token with all permissions and a...