bug-bounty519
xss287
rce175
google162
facebook137
microsoft133
exploit129
malware124
account-takeover118
bragging-post117
cve104
privilege-escalation95
open-source88
csrf87
authentication-bypass83
stored-xss75
phishing73
access-control69
ai-agents66
web-security64
reflected-xss63
apple61
writeup56
input-validation53
reverse-engineering53
sql-injection51
ssrf50
cross-site-scripting49
smart-contract48
defi48
api-security47
dos45
ethereum45
information-disclosure44
tool43
supply-chain43
privacy43
browser41
web-application39
cloudflare39
lfi38
burp-suite37
race-condition37
vulnerability-disclosure37
web337
automation36
opinion36
ai-security36
ctf36
oauth36
0
3/10
Richard Fontana discusses the 'exploitation paradox' in open source: how changing technological and social infrastructure creates new opportunities to exploit FOSS through loopholes (dual-licensing, SaaS loophole), leading to reactive legal fixes like the AGPL that often fail to solve the underlying problems and create new control points.
open-source
licensing
copyright
copyleft
gpl
agpl
dual-licensing
saas-loophole
legal-analysis
free-software
power-dynamics
contributor-agreements
clp
exploitation
Richard Fontana
Red Hat
IBM
CfgMgmtCamp
Free Software Foundation
Open Source Initiative
GPL
AGPL
Ansible
Foreman
LWN.net
Joe Brockmeier