-
When you revoke an access token and try to refresh it afterwards, you end up with an error 500.
This seems to be related to the `get_original_scopes` method of `oauth2_provider/oauth2_validators.py…
-
### Description
Since the beginning of the year, I've been experiencing a problem with the Oauth2 Discord API. Randomly, Oauth2 tokens return "401 Unauthorized" when I try to retrieve the associated …
-
Revocation is a trickier subject than it first appears. Who has permission to revoke? What can be revoked with that permission? One point that is obvious but should be called out is that revoking a…
-
Ideally, most or all of the Snap permissions can be requested dynamically. A snap should be able to request, say, "endowment:ethereum-provider" or "snap_notify" when it needs to enable a related featu…
-
# Lines of code
https://github.com/code-423n4/2022-05-rubicon/blob/main/contracts/rubiconPools/BathHouse.sol#L264
# Vulnerability details
There is no option to revoke strategist's privilege.
As th…
-
### Is your feature request related to a problem? Please describe.
Some Galaxy cluster values are `revoked`, but are shown in the interface. Users can also still tag with these.
### Describe the sol…
-
### Describe the bug
After we increase the number of partition of a topic (e.g. from 2 -> 5), the consumer will hit into rebalance related error.
### To Reproduce
Increase any existing topic's nu…
-
# Lines of code
https://github.com/Tapioca-DAO/tapioca-bar-audit/blob/2286f80f928f41c8bc189d0657d74ba83286c668/contracts/markets/MarketERC20.sol#L251-L284
# Vulnerability details
## Impact
MarketE…
-
Currently there's no way to revoke access for apps via. the API. Using the simple account dashboard, we should be able to list all apps that have access to our remote storage and optionally revoke the…
-
I still get this ghastly "the app requires storage permissions" error trying to access the app. Even though I actually did manually grant storage permissions since I knew it was an issue. No matter wh…