bug-bounty494
xss347
exploit261
google250
facebook191
rce190
microsoft178
malware157
cve129
web3125
writeup116
apple98
open-source91
csrf83
phishing75
browser73
sqli72
account-takeover70
dos66
ai-agents63
cloudflare60
supply-chain59
privilege-escalation59
pentest55
reverse-engineering54
ssrf49
auth-bypass48
tool46
ctf46
privacy44
cloud44
aws38
llm37
race-condition36
lfi35
opinion35
idor34
oauth34
automation33
machine-learning32
infrastructure31
code-generation31
node30
info-disclosure29
buffer-overflow29
clickjacking28
access-control27
react26
cors26
subdomain-takeover25
0
3/10
Richard Fontana discusses the 'exploitation paradox' in open source: how changing technological and social infrastructure creates new opportunities to exploit FOSS through loopholes (dual-licensing, SaaS loophole), leading to reactive legal fixes like the AGPL that often fail to solve the underlying problems and create new control points.
open-source
licensing
copyright
copyleft
gpl
agpl
dual-licensing
saas-loophole
legal-analysis
free-software
power-dynamics
contributor-agreements
clp
exploitation
Richard Fontana
Red Hat
IBM
CfgMgmtCamp
Free Software Foundation
Open Source Initiative
GPL
AGPL
Ansible
Foreman
LWN.net
Joe Brockmeier