Latest in Log4j


Open-Source Security: How Digital Infrastructure Is Built on a House of Cards

Log4Shell remains a national concern because the open-source community cannot continue to shoulder the responsibility of securing this critical asset and vendors are not exercising due care in incorporating open-source components into their products. A comprehensive institutional response to the incentives problem is needed. 

Subscribe to Lawfare