-
### Summary
In order to foster AIPs we suggest a reward system that incentivises the creation of high quality proposals. This reward system should compensate authors for their efforts in the form of …
2xAST updated
3 years ago
-
Linters are a great way to enforce certain coding practices and avoid mistakes, as well as to improve the code quality to help reviewers.
I think it'd be useful to support this in scorecard. Maybe …
-
Companies like Checkmarx offer tools like https://free.codebashing.com/ and other companies like https://securecodewarrior.com/ also work in this space.
I'm curious if the standard would consider …
-
We should have a build pipeline that:
1. Performs SAST
2. Scans for known vulnerabilities
3. Generates/publishes an SBOM
4. Builds/Publishes an OCI image
-
We are using a request-handler with our drachtio.
```
http://10.95.16.234:8080/sip4.xxx.com
```
We are trying our k8s and switched this to another instance that is about 25…
elbow updated
4 years ago
-
"ADT", "AST", "BST", "CAST", "CDT", "CEDT", "CST", "EAST", "GDT", "JST", "KST", "MDT", "MST", "NST", "PDT", "SAST", "TST", "U", "VST", "WAST"
-
**Privacy_Violation** issue exists @ **src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java** in branch **refs/heads/master**
*Method processRequest at line 64 of src\main\java\org\…
-
- [x] What is the OWASP Top 10
- [x] What tools can be used to test the security
-
There is an error with this repository's Mend configuration file that needs to be fixed. As a precaution, scans will stop until it is resolved.
Errors:
* Failed to fetch external configuration from h…
-
For some tools that generate relative urls such as gitleaks, pmd the code auto-prefixes workspace for each result to make the location absolute. As per SARIF specification, it should be possible to sp…