Security
Canva
Tue May 07 2024
Endpoint vulnerability management at scale
How we do endpoint vulnerability management at Canva.
Wed Mar 06 2024
Fonts are still a Helvetica of a Problem
CVEs in three strange places and the unique problem of safely processing and handling fonts.
Tue Sep 05 2023
When URL parsers disagree (CVE-2023-38633)
Discovery and walkthrough of CVE-2023-38633 in librsvg, when two URL parser implementations (Rust and Glib) disagree on file scheme parsing ...
Wed Apr 05 2023
Discovering Headroll (CVE-2023–0704) in Chromium
