-
### Code of Conduct
- [X] I have read and agree to the GitHub Docs project's [Code of Conduct](https://github.com/github/docs/blob/main/.github/CODE_OF_CONDUCT.md)
### What article on docs.github.co…
-
We are currently using a service account key from GCP to authenticate. Historically, given how our GHAs are set up for InVEST, each team member has copied those secrets over to their personal fork in …
-
Create a security recommendation/hardening guide for applications that use the Kubernetes client. This could include different use-cases like:
1. Creating an application which runs `kubectl` comman…
-
The security and privacy aspects of this project could be improved in several fronts:
1) Enable optional resource limits intended for the processing of untrusted documents.
2) Identify potential…
-
Besides #1, it would be good to investigate other measures that can/should be taken to make running Docker containers on shared systems more secure.
-
#### Is your feature request related to a problem?
Potential problems, yes...
#### Describe the feature you'd like
Give https://docs.github.com/en/actions/security-guides/security-hardening-f…
-
My application monitoring see that Firefox joining tcp 127.0.01 lochost, **port 30035**, this is the same port for the moolticut communication between mooltipass and moolticut.
At the first moment i …
-
- [x] if possible, change user/group to `nobody` immediately after startup
- [ ] if possible, chroot into `/var/empty` immediately after startup
- [ ] seccomp or something?
-
Hi! Love the new birdle. As a birder but also a security geek I wanted to throw some suggestions out there related to Django security, you can take or leave as you wish:
1. Django secret in git his…
-
- [ ] #112
- [x] #113
- [ ] #114
- [ ] #115
- [x] #139
- [x] Boot with signed kernels (no-UKI)
- [ ] Boot measurement (UKI https://github.com/kairos-io/kairos/issues/868)
- [ ] https://github.com/kai…