The focus on security has recently seen an explosion (pun intended), mostly due to the use of AI, for good and for bad — the bad due to AI slop. The Jetty Project takes security reports very seriously: we verify them against Jetty, and if Jetty is found to be Read more
Several months ago, the Eclipse Foundation approached the Eclipse Jetty project with the offer of a security audit. The effort was being supported through a collaboration with the Open Source Technology Improvement Fund (OSTIF), with the actual funding coming from the Alpha-Omega Project. Upon reflection, this collaboration could not have Read more