> there are more sources, So time for a new project, the Common Reporter Enumeration (CRE)? Would be kind of nice to have a measurable mapping between CVE and reporter, and would allow third parties to publish things like CRE-to-reliability mapping ;) Mark