Google Project Zero

https://projectzero.google/

Google's elite vulnerability research team. URL UPDATED 2026-05-08: legacy googleprojectzero.blogspot.com 301-redirects to projectzero.google. The Atom feed at /feed.xml is too large for WebFetch's content limit (>10 MB) — use the HTML index for the recent listing, or fetch the feed via the bridge if needed. | 2026-06-20 full audit (v2.62): live=Y, drill=Y. FETCH → bridge feed: python3 tools/fetch_source.py feed https://projectzero.google/feed.xml 5 (canonical URLs) then webfetch the per-post projectzero.google/YYYY/MM/<slug>.html. WebFetch of the HTML index also works for the listing.. AVOID: Don't WebFetch the /feed.xml directly — it exceeds WebFetch's content limit; use the bridge feed subcommand for the feed. WebFetch's summariser rendered post URLs as 'project-zero.google' (hyphen) — the canonical host is projectzero.google (no hyphen, confirmed via the bridge feed); use the feed's verbatim links..