-
**Commit**: [a5b1ffc](https://github.com/OP-TEE/optee_client/commit/a5b1ffcd26e328af0bbf18ab448a38ecd558e05c) (master)
**File**: `libckteec/src/serialize_ck.c#L104`
**Function**: `serialize_indirect…
-
Linux 4.14 has been EOL since [2024-01-10](https://lore.kernel.org/lkml/2024011046-ecology-tiptoeing-ce50@gregkh/).
It is no longer receiving security fixes, so as part of our security tenets we sh…
-
### Proposed change
The `net.i2p.crypto:eddsa` used in the `jnats` has not been updated for five years.
Maybe the library will need to be switched to a different one or replaced with custom code?
#…
-
## Why do we need this ?
Implement a CodeQL workflow to perform security analysis on the codebase. This will help in identifying potential vulnerabilities and improving the overall security posture o…
-
### 🔖 Enhancement description
Besides the openruntimes-executor, which makes use of the docker socket, there is no need to run all the appwrite container as root. In addition, all privileges or syste…
-
# Problem
ICS e2e testing uses a long bash script to initialize the testing environment.
Although there is nothing wrong with using bash scripts they quickly become poorly maintained due to their imp…
-
### Repository URL
https://github.com/appknox/appknox-jenkins-plugin
### New Repository Name
appknox-scanner-plugin
### Description
This plugin enables automatic security testing for An…
-
We already borrow the module blacklist and bluetooth configuration from them. There is a lot more here that could be used right now; used by both Whonix and QubeOS and are generally useful and trustwo…
-
Python 3.8 already reached EOL and no longer receives any security updates: https://devguide.python.org/versions/
Could you update LLVM (I think python 3.8 is used there) so that it will use latter…
-
We've discussed and agreed in this week's Security team meeting
that when we update or delete a role, and the subsequent cache clearing operation fails, e.g. https://github.com/elastic/elasticsearch/…