Our response to a recent vulnerability disclosure: actions taken & continuous improvement

Whitehat security researchers discovered a remote code execution vulnerability in Qodo, which has been promptly addressed without evidence of exploitation or data compromise. The company, valuing customer trust, has collaborated closely with the researchers and engaged a leading cybersecurity firm to enhance its security posture, focusing on systemic improvements and broad security awareness. Remediation efforts included credential revocation and rotation, patching, and hardening, while continuous improvement measures involve forensic investigation and hiring dedicated application security resources. Qodo emphasizes transparency and proactive defense strategies to protect customer data, expressing gratitude to the researcher for their responsible disclosure and collaboration.