Socket.dev reports that Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged, highlighting sustainability challenges in open source security.
Node.js Drops Bug Bounty Rewards After Funding Dries Up
Socket.dev reports that Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged, highlighting sustainability challenges in open source security.
Source: Socket