-
Vulnerable Library - spring-cloud-starter-stream-kafka-4.0.3.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/cloud/spring-clou…
-
**Describe the bug**
We use Falco custom rules defined in the [Cloud Native Security Hub](https://securityhub.dev/falco-rules/cve-2019-5736). For example, we noticed that there is a rule define…
-
Now it is possible to use Azure service principal account for secrets provider but not for Azure state backend. Using AZURE_STORAGE_ACCOUNT / AZURE_STORAGE_KEY / AZURE_STORAGE_SAS_TOKEN doesn't scale …
-
Now and again I get the error:
**"Could not decrypt data with alias: "**
Happens when I call **Keychain.getGenericPassword()**
I don't use a service when calling **Keychain.setGenericPassword** (…
-
## Background
[Living document for this super epic](https://docs.google.com/document/d/1GmgzPOqcQz9RUnjUnfuEK_5_NRRAndoVTYPIKXIUHNI/edit#)
# Overview
[Lagoon](https://lagoon.sh/) is an applicat…
-
### Version of the project
v3.0.0-beta.0
### Tech Stack
DevOps [DO]
### Project details
Prometheus, a Cloud Native Computing Foundation project, is a systems and service monitoring syst…
-
Create a Feature Adoption Dashboard using the `gold_cloud_security_feature_adoption` and [Wireframe](https://miro.com/app/board/uXjVM2xi1Tk=/?moveToWidget=3458764566981298569&cot=14)
**Definition of…
-
### Issue
Currently, API keys that are generated by cloud users in Kibana display a numeric user ID, making it difficult to know who created it, especially in an multi-user environment.
The API …
-
**TLS/ HTTPS Policy Checks**
Description: The following are some new controls for the CaC Solution's Guardrail 7. The goal is to determine if TLS1.2+ or HTTPS encryption is being used for all cloud s…
-
Considering Discord is down and I need to get to bed soon (10:25p here and I'm up at 5:00am tomorrow) I want to gather some thoughts here.
We're building a brand new product here so we have a rare…