-
I believe the .net version needs to be updated or this needs to be added to force SHA256:
// Set the signing algorithm to RSA-SHA256.
`signedXml.SignedInfo.SignatureMethod = "http://www.w3.org/200…
-
"When using the SASL SCRAM mechanism, the SCRAM-SHA-256-PLUS variant SHOULD be preferred over the SCRAM-SHA-256 variant, and SHA-256 variants [RFC7677] SHOULD be preferred over SHA-1 variants [RFC5802…
-
top-level guidance is coming for this someday, but for now you can review this reference: https://blog.rafaelgss.dev/why-you-should-pin-actions-by-commit-hash
-
## Background
GitHub security good practices documentation says you should use the commit hash instead of the version
`Pin actions to a full-length commit SHA
Pinning an action to a full-length com…
-
## Motivations
https://github.com/actions-rust-lang/setup-rust-toolchain
At the moment we use https://github.com/dtolnay/rust-toolchain which has less features. E.g. it misses caching, rust-tool…
-
**Github username:** @0xbrett8571
**Twitter username:** 0xbrett8571
**Submission hash (on-chain):** 0x23fa0b8694b08ab97bcec4e87c488557deb55b5e170f8032c5e53171d81aa2ff
**Severity:** medium
**Descript…
-
After:
- SCRAM-SHA-1
Can you add supports of:
- SCRAM-SHA-1-PLUS
- SCRAM-SHA-256
- SCRAM-SHA-256-PLUS
- SCRAM-SHA-512
- SCRAM-SHA-512-PLUS
- SCRAM-SHA3-512
- SCRAM-SHA3-512-PLUS
You can …
-
"When using the SASL SCRAM mechanism, the SCRAM-SHA-256-PLUS variant SHOULD be preferred over the SCRAM-SHA-256 variant, and SHA-256 variants [RFC7677] SHOULD be preferred over SHA-1 variants [RFC5802…
-
In https://github.com/audeering/audbackend/pull/245 we introduced `audbackend.checksum()` that calculates the checksum for a parquet file only as MD5 sum, if it is not given in its metadata. In the Ar…
-
After:
- SCRAM-SHA-1
Can you add supports of :
- SCRAM-SHA-1-PLUS
- SCRAM-SHA-224
- SCRAM-SHA-224-PLUS
- SCRAM-SHA-256
- SCRAM-SHA-256-PLUS
- SCRAM-SHA-384
- SCRAM-SHA-384-PLUS
- SCRAM-SHA…