-
Database secrets (login info) are exposed in the `dbcontroller.php`.
- [ ] Change current secrets so nobody can use them
- [ ] Move secrets into separate file and make sure to [gitignore](https:/…
-
Our current policy (added in https://github.com/open-telemetry/.github/pull/1) is to report security vulnerabilities to TC via encrypted email. GitHub now supports reporting vulnerabilities directly t…
-
received the following email from jujube@bodydoubler.com... her browser is reporting Savvi as sketchy
Gavin,
We've gone ahead to create a Savvi account but encountered some vulnerability wh…
-
**Issue by [rodrigok](https://github.com/rodrigok)**
_Thursday Jun 07, 2018 at 12:53 GMT_
_Originally opened as https://github.com/xolvio/chimp/issues/692_
----
##### Expected behaviour
No securi…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Security policy not enabled.
A SECURITY.md file can give users information about w…
-
https://blog.auxiliumcybersec.com/?p=2586
-
Hi
Few potential security vulnerability has been disclosed to huntr against your report .
It has been 6 month since bug reported but still not validated .
Plz validate them
https://huntr.dev/boun…
-
-
Hello,
CERT PL found a security vulnerability in this repository. How can we report this privately? We don't see any security policy describing how such vulnerabilities should be reported.
kazet updated
5 months ago
-
Hi,
I would like to report a security vulnerability. Can you please [create a draft Github secuirty advisory](https://docs.github.com/en/code-security/security-advisories/repository-security-adviso…