yes, we have regular scanning for security issues internally using black duck.
05/13/2021, 6:34 PM
FWIW osquery's Thrift server listens on a socket (POSIX) or named pipe (Windows) that is permissioned to allow only root users to access it. So I'm not sure vulnerabilities in the server would be worth exploiting (since the user would already have root).
05/13/2021, 6:59 PM
That's true (now — until recently on Windows osquery didn't lock down the Thrift pipe but now it does)