Jeff Sikes @box464@mastodon.social
Public

Listen, as someone that follows many fediverse platforms, @thisismissemEmelia πŸ‘ΈπŸ» is one of the most active in the community. She has jumped in and assisted with security and ActivityPub issues across them all.

Please consider contributing to her tip jar if you can, especially for this last bit of advocacy work. Find her contribution options on her profile.

hachyderm.io/@thisismissem/114

Emelia πŸ‘ΈπŸ» (@thisismissem@hachyderm.io)

This is a program that I've been championing within @nivenly over the past year, after we noticed that security vulnerabilities weren't being responsibly, and not enough research was going into the security of Fediverse software. You might remember my Pixelfed vulnerability from last year, where OAuth scopes weren't checked allowing for privilege escalation via the API (CVE-2024-25108), that was our very first test-case of this program. I'm incredibly proud to be involved in launching the Fediverse Security Fund from Nivenly Foundation (a 501(c)4 not-for-profit cooperative) #fediverse #security #nivenly #FediverseSecurityFund RE: https://hachyderm.io/@nivenly/114268491892140498

hachyderm.io Β· Hachyderm.io

0
0
0

If you have a fediverse account, you can quote this note from your own instance. Search https://mastodon.social/users/box464/statuses/114268849376068885 on your instance and quote it. (Note that quoting is not supported in Mastodon.)