[$] Resurrecting DWF

Five years ago, we looked at an effort toassist in the assignment of CommonVulnerabilities and Exposures (CVE) IDs, especially for open-sourceprojects.Developers in the free-software world have often found it difficult toobtain CVE IDs for the vulnerabilities that they find.The Distributed WeaknessFiling (DWF) project was meant to reduce the friction in theCVE-assignment process, but it never really got off the ground. In a blogpost, Josh Bressers said that DWF was hampered by trying to follow therules for CVEs. That has led to a plan to restart DWF, but this time without the"yoke of legacy CVE".