-
spin-off from https://github.com/OWASP/ASVS/issues/1916 "Discussion/Proposal 1"
The [summary](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-browser-based-apps#section-6.3.3.3) for browser …
-
- https://liu.diva-portal.org/smash/get/diva2:1711128/FULLTEXT01.pdf
----
- [x] #19
- [x] #20
- [x] 2. Background
- [x] 2.1 Containers
- [x] 2.2 Linux kernel features
- [x] 2.3 Attack…
-
**What would you like to be added**:
I would like to have optimized Garden Linux container base image.
Currently images are ~110MBs
```bash
% podman images
REPOSITORY …
-
CORS headers in a resolver introspection (infection) response can allow browser clients to load the response in a page hosted elsewhere.
A new feature of the ARKs environment is the ability to cha…
-
## Overview/summary
Currently shopify sends [`session-token`](https://shopify.dev/docs/apps/build/authentication-authorization/session-tokens) as part of the authorization header, or in the query sea…
-
# Summary
(Follow-up to https://github.com/argoproj/argo-workflows/issues/5061 after thinking about it some more.)
I think param interpolation in `command`, `args`, and `source` is an anti-patte…
-
**Is your feature request related to a problem? Please describe.**
blocked by e2e
**Describe the solution you'd like**
only allow the bot to be accessed by users from verified sessions so if a u…
-
As system calls are added to the kernel, I feel there is not enough discussion by default of the wide variety of applications that will suddenly gain access to a new attack surface.
The canonical exa…
-
Can we get a template that would allow for a narrator voice and a person speech voice...
For example:
```
Sergeant Maria Vasquez enters the room, saluting sharply before taking a seat across fr…
-
We should migrate Mimir to a distroless Docker image, to reduce the attack surface.
The main pushback towards this move was because it's then very difficult to debug a live container (e.g. look at …