Concepts for vulnerability reporting and management

Learn core concepts relating to vulnerability reporting and management on GitHub.

GitHub Advisory database

The GitHub Advisory Database contains a list of known security vulnerabilities and malware, grouped in three categories: GitHub-reviewed advisories, unreviewed advisories, and malware advisories.

Global security advisories

Global security advisories are CVEs and GitHub-originated advisories affecting the open source world, located in the GitHub Advisory Database.