-
Should we generate our own token or use the Google OAuth Token required for logging the user?
-
Recommend adding a security feature to "start" such as `secure=True|False` which requires any client connecting on the bottle port to supply a randomly generated token to connect. We may not want othe…
-
From https://github.com/zetkin/lyra/issues/114, where I accidentally included the `github_token` value from my `projects.yaml` as part of my example.
> **Security tokens**
>
> You are not the fi…
-
### ✨ Feature Request Overview
Implement authentication functionalities using JWE-based tokens, which differ from traditional JWT. It would be preferable to utilize RTK Query for this implementatio…
-
**Github username:** @LouisTsai-Csie
**Twitter username:** @0xlouistsai
**Submission hash (on-chain):** 0xc6e5bd2a7ed4f9ee247dfb8f0338ad1a45899882b2dfb29c3af63338abd55849
**Severity:** medium
**Desc…
-
## Describe the bug
Continuing the discussion from https://github.com/DSpace/DSpace/issues/9236
## Arguments for only issuing CSRF tokens in the POST response to /csrf
No leakage of tokens via …
-
### Goal
Write comprehensive tests to ensure the ERC-20 contract functions as expected and is secure.
### Tests to Include
- Initial token supply and balance
- Transfer functionality between acc…
-
After "fixing" https://github.com/cloudbase/garm/issues/309 for us, I enabled JIT tokens again. Soon afterwards we saw failing runs in connection with android emulators. After investigation we found o…
-
One should add some security related checks to file tokens, to make sure that these token files belong to the UID of the application reading it and that the permissions of this token files are private…
-
Input Validation & Sanitization: Ensure all user inputs are validated and sanitized to prevent attacks like SQL injection and XSS.
Secure Environment Variables: Move sensitive information (API keys…