The world of vulnerability information is changing rapidly and the systems we relied upon for a long time is having issues with funding, scalability and trust. As a community, we need to join forces and discuss where to go from here. The global vulnerability intelligence platform project (GVIP) is working towards building a global multi-stakeholder organisation to manage the flow of vulnerability intelligence.
The organisation currently is supported by our founding members:
Our conference to meet, learn and discuss in person
Open Community meetings online to discuss and plan future actions
Recorded sessions with experts in vulnerability management
Community meetings to discuss, learn and agree on the way forward
Read the requirements that we have agreed on so far. Join the work on setting the standards for the future.
Watch our webinars with people that work daily with vulnerabilities and have experience of the current platforms. Learn, get insights and then discuss.
The GVIP community is where we all meet and discuss in an open manner where there are issues, what we can do and agree on a direction. Some meetings will have a short presentation, but Read more
AboutCode has a long history of working with compliance and software supply chain security and integrity. In February, the Aboutcode Foundation joined as a member of the GVIP project where Philippe Ombredanne will join the Read more
In a recent episode of the Open Source Security podcast, Josh chats with Olle E. Johansson about the Global Vulnerability Intelligence Platform (GVIP). It’s no secret the current vulnerability systems are reaching a breaking point. Read more
The presentation slides are now available. If you visit the conference agenda there are links to the PDF in the lower part of the page. They are all stored in our Github Repository. A big Read more
In a posting on CyberSecurityDive.com Jan 23, 2026, NIST is finally talking about the situation with the National vulnerability database, the NVD. For years, Boyens said, vulnerabilities have been arriving in the database much more Read more
FOSDEM has approved a birds-of-a-feather session on the topic of Open Source vulnerability management. We encourage everyone active in the field to join us! The vulnerability management world is in a bit of turmoil. With Read more
