惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
博客园_首页
H
Hackread – Cybersecurity News, Data Breaches, AI and More
T
ThreatConnect
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
博客园 - 聂微东
H
Help Net Security
T
Threat Research - Cisco Blogs
Blog — PlanetScale
Blog — PlanetScale
A
Arctic Wolf
G
Google Developers Blog
量子位
U
Unit 42
I
InfoQ
V
V2EX
F
Fox-IT International blog
P
Privacy & Cybersecurity Law Blog
V
Visual Studio Blog
J
Java Code Geeks
大猫的无限游戏
大猫的无限游戏
C
CERT Recently Published Vulnerability Notes
博客园 - 三生石上(FineUI控件)
T
The Exploit Database - CXSecurity.com
T
Tailwind CSS Blog
SecWiki News
SecWiki News
Know Your Adversary
Know Your Adversary
MyScale Blog
MyScale Blog
宝玉的分享
宝玉的分享
The Hacker News
The Hacker News
Project Zero
Project Zero
Application and Cybersecurity Blog
Application and Cybersecurity Blog
月光博客
月光博客
Recent Commits to openclaw:main
Recent Commits to openclaw:main
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
G
GRAHAM CLULEY
C
Cisco Blogs
I
Intezer
Simon Willison's Weblog
Simon Willison's Weblog
O
OpenAI News
Recorded Future
Recorded Future
T
Tenable Blog
W
WeLiveSecurity
腾讯CDC
Stack Overflow Blog
Stack Overflow Blog
T
The Blog of Author Tim Ferriss
www.infosecurity-magazine.com
www.infosecurity-magazine.com
D
Docker
C
Cybersecurity and Infrastructure Security Agency CISA
PCI Perspectives
PCI Perspectives

LWN.net comments

You know better [LWN.net] Sharing vulnerability information and fixes with upstream [LWN.net] Sharing vulnerability information and fixes with upstream [LWN.net] Can this marketing offensive please end? [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Sharing vulnerability information and fixes with upstream [LWN.net] I hope they do something useful [LWN.net] Such a system already exists [LWN.net] How about a `git reflog`? [LWN.net] Can this marketing offensive please end? [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Can this marketing offensive please end? Surprising [LWN.net] malloc(0) [LWN.net] It's like capital gains taxes [LWN.net] This isn't just anti-ai, it's also anti-gui [LWN.net] Dead links [LWN.net] Can this marketing offensive please end? [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Revealing [LWN.net] Data structures and overhead [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Nonsense [LWN.net] Revealing [LWN.net] Nonsense [LWN.net] Surprising [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Revealing [LWN.net] Recording? [LWN.net] tier support exist already in a fashion [LWN.net] Recording? [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] This isn't just anti-ai, it's also anti-gui [LWN.net] Nonsense [LWN.net] Revealing [LWN.net] This is bananas. [LWN.net] Nonsense [LWN.net] Just 12 vulnerabilities? [LWN.net] Nonsense [LWN.net] This isn't just anti-ai, it's also anti-gui [LWN.net] Surprising What if you just use AI to explore? Surprising [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Revealing [LWN.net] Power trip? [LWN.net] Categorically no. [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Nonsense [LWN.net] Nonsense [LWN.net] Surprising [LWN.net] Surprising [LWN.net] This is bananas. [LWN.net] Nonsense [LWN.net] This isn't just anti-ai, it's also anti-gui [LWN.net] Revealing [LWN.net] Nonsense [LWN.net] Just 12 vulnerabilities? [LWN.net] Nonsense [LWN.net] Editing session recording as a throttling mechanism [LWN.net] Privacy [LWN.net] Surprising [LWN.net] Speedruns do require this [LWN.net] Nonsense [LWN.net] Loss of words Nonsense [LWN.net] This isn't just anti-ai, it's also anti-gui [LWN.net] This seems unwieldy [LWN.net] Proprietary vs open source models [LWN.net] This seems unwieldy [LWN.net] Revealing [LWN.net] Surprising [LWN.net] Just 12 vulnerabilities? [LWN.net] Just 12 vulnerabilities? [LWN.net] Revealing [LWN.net] Revealing [LWN.net] Just 12 vulnerabilities? [LWN.net] Revealing [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net] Revealing [LWN.net] Generate assembly language directly with -S [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net] Deriving Documentation and Specifications [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net] Good, bad and probabilistic [LWN.net] Proprietary vs open source models [LWN.net] Proprietary vs open source models [LWN.net]
Sharing vulnerability information and fixes with upstream [LWN.net]
hailfinger · 2026-05-29 · via LWN.net comments

Sharing vulnerability information and fixes with upstream

Posted May 28, 2026 18:39 UTC (Thu) by hailfinger (subscriber, #76962)
In reply to: Sharing vulnerability information and fixes with upstream by archaic
Parent article: IBM's "Project Lightwell"

Good point. At least in the CRA, "shall" and "should" are used in the RFC 2119 meaning, i.e. "shall" is equivalent to "must": https://datatracker.ietf.org/doc/html/rfc2119#section-1
Now in the quoted text there is both "should" and "shall". Fortunately, the "should" is only in the Preamble (which is there to clarify what the law is intended to do), but the legally binding text in subsequent chapters uses "shall".

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。