The Software Engineer Who Contributed a Fix for an Apache Airflow Vulnerability Used by Some Fortune 500 Companies

CVE-2025-57735 exposed a critical flaw in Apache Airflow’s session management: JSON Web Tokens (JWTs) remained valid even ...

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

Microsoft on Tuesday released a fix for a high-severity zero-day that was disclosed by a researcher who has been locked in a ...