I developed cve-search some years ago, and I would like to share the challenges we faced, especially the design failures that ultimately led us to redevelop it as vulnerability-lookup.

I can certainly blame myself for some of these mistakes, but there are also others to blame along the way.

This hands-on workshop introduces the open-source Vulnerability Lookup project and the Global Common Vulnerabilities and Exposures (GCVE) initiative, two complementary efforts designed to modernize and decentralize the way vulnerabilities are published, shared, and consumed.