Comments (5)
pmac
commented on June 20, 2024
We do have a JSON feed in the format that MITRE requires. I'm not sure if it's what you need, but it could be used to do what you need I think.
https://www.mozilla.org/en-US/security/advisories/cve-feed.json
from foundation-security-advisories.
klausenbusk
commented on June 20, 2024
We do have a JSON feed in the format that MITRE requires. I'm not sure if it's what you need, but it could be used to do what you need I think.
That could work, thanks! I do find it a bit strange though, that security issue/dot releases isn't announced. How is ex Linux distros supposed to know when a new version is available?
from foundation-security-advisories.
pmac
commented on June 20, 2024
You mean other than the release notes we publish for every version when they're released?
https://www.mozilla.org/en-US/firefox/releases/
Or the public site that has all kinds of data on our releases?
https://product-details.mozilla.org/1.0/
from foundation-security-advisories.
klausenbusk
commented on June 20, 2024
You mean other than the release notes we publish for every version when they're released?
What I meant was: There is no way to be notified when a new release is released, you either need to visit or scrap https://www.mozilla.org/en-US/firefox/releases/ regularly, that isn't ideal.
from foundation-security-advisories.
lizzard
commented on June 20, 2024
Release management is discussing this and will likely post an update in https://bugzilla.mozilla.org/show_bug.cgi?id=1589656.
from foundation-security-advisories.
Related Issues (19)
- Advisories check script gives errors with python 3.10 (but works with 3.8) HOT 1
- Incorrect advisory
- Broken file content blocking ingestion for mozilla.org HOT 1
- Link in recent sec advisory has restricted access HOT 1
- How to pair advisories to products? HOT 4
- Improve check_advisories for formatting HOT 1
- Migrate Pocket's bug bounty program to Mozilla HOT 5
- Firefox Bug Bounty Rewards is extremely outdated HOT 4
- CODE_OF_CONDUCT.md file missing
- Upgrade the linter script and dependencies for Python 3.7
- Add a check in check_advisories.py to make sure we dont have any CVE-2019-XXXX HOT 2
- Support advisories for mobile products
- Add an extra syntax check in check_advisories.py HOT 1
- check_advisory should ensures that there are no extra, unexpected fields in a file HOT 1
- Travis CI free usage ends Dec 3; mozilla repos should switch to other CI platforms
- Distinctive difference between package name and version HOT 5
- mfsa2021-41 HOT 1
- HOF Script won't find some entries
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from foundation-security-advisories.