EU launches Bug Bounties on 14 open source projects
Heartbleed, a high-risk vulnerability in the OpenSSL encryption library OpenSSL project in 2014, has made the world aware that some well-known open source projects are critical to the integrity and reliability of the entire Internet and other infrastructure. The Linux Foundation then launched the Core Infrastructure Initiative (CII). CII initiative to fund open source infrastructure projects including OpenSSL.
Today, the economics of projects such as OpenSSL has improved greatly, and security audits are progressing in an orderly manner. Now, Julia Reda, a member of the German party in the European Parliament and vice president of the Greens-European Free Alliance, announces a Bug reward for open source projects to improve the security of open source projects.
The 14 open source projects funded by the European Union include Filezilla, Apache Kafka, Notepad++, PuTTY, VLC Media Player, FLUX TL, KeePass, 7-zip, Digital Signature Services (DSS), Drupal, GNU C Library (glibc), PHP Symfony, Apache Tomcat and WSO2. Depending on the severity of the bug, a reward of between €25,000 and €90,000 is offered.
There are thousands of open source projects and these projects funded by the European Union.