-
TFLint installed with this action has not been verified for checksums/signatures. This action is typically performed on the GitHub infrastructure, and binaries are distributed under the organization w…
-
Your plugin hardcodes the table name for the wp_users table. Since most security standards suggest changing your default table prefix to avoid injection attacks, this should be a configurable option. …
-
I'm a Cyber Security researcher and developer of PackjGuard [1] to address open-source software supply chain attacks.
# Issue
During my research, I detected a _deleted package_ in this repository.
…
-
Hi there! Big fan of Deno Deploy.
One of the things I was curious about—and I'm not sure this is a security vulnerability "in the wild" as such—is the presence of functioning timers within function…
-
-
Would you consider adding blind signing capabilities as mentioned in the paper (from the readme). A nice & concise overview here https://crypto.stackexchange.com/a/12832/10693
-
Hi,
I want to encrypt a pretty big string, around 60 mo (which come from file).
Since i want to have a responsive ui, i chunked the string into small parts.
And i encrypt each part one after the oth…
-
The BIGNUM library defaults to a non-constant time implementation of various operations. Where we want to force a constant time implementation we have to remember to set the BN_FLG_CONSTTIME flag. Exp…
-
## Summary
This feature enables the rotation of passwords at a certain cadence.
## Intended Outcome
It enhances the overall security posture for cf-for-k8s. Limiting the lifespan of a password re…
-
## Summary
This feature enables the rotation of certificates at a certain cadence.
## Intended Outcome
It enhances the overall security posture for cf-for-k8s. Limiting the lifespan of certificat…