NH:STA S01E03 Yocto

This post is part of a series on our work for the Sovereign Tech Agency . Our first post in the series explains why and how we are contributing to various open source projects. In this instalment of the series, we learn why the team dug into more than 200 CVEs from as far back as 1998, and what else they did to help both the Yocto project and Linux security more broadly. About the project You may not have heard of Yocto , but you have most certainly used Yocto, at least indirectly. Yocto lets you build a bespoke Linux distribution for your embedded devices . Many “smart home” or otherwise smart appliances likely run a variant of Linux under the hood (that you never see or interact with) and chances are good that the manufacturer used Yocto to create and maintain that bespoke Linux distribution. Their users and supporters are a veritable who is who of the technology industry: Intel, AMD, ARM, Cisco, Microsoft, Siemens, Texas Instruments, Dell, LG, Qualcomm, you name them. Our contributi