GCVE-BCP-11 - Community-Proposed Updates to Existing CVE Records

I think this will get us to a much better state than we are currently, but I will try it out on some of the recent examples we’ve found to see how it works out.

(Editing existing comment because apparently a new user can only post 3 times to a topic)

Also, if this goes forward and is integrated with vulnerability-lookup, perhaps a view could be implemented for those who choose to trust the community curations that does all of the merging and presents a unified view of a CVE so that consumers don’t all have to try and implement that logic. Would that be helpful?

1 Like