-
Public Sector CNCF Members are seeing Government Customer focus on securing software supply chains and receiving attestations. These attestations need to be signed and have provenance bridge across mu…
-
Issue found in OpenSSL 1.1.1d; probably in 1.1.0 and higher.
Not found in version 1.0.2 stream.
The depth limit is only checked if trust is X509_TRUST_UNTRUSTED, but missed for X509_TRUST_TRUSTED …
-
The Trusted Repository Security Initiative Task Force was created from roundtables at the Secure OSS Policy Summit in Washington D.C. in Sept. 2023 and would like to work as a SIG within the Supply Ch…
-
**What is the bug?**
When operating behind a reverse proxy, hubble currently views all grpc requests as coming from a singular internal IP, which quickly triggers the hubble internal rate limiting de…
obo20 updated
3 weeks ago
-
Hello everyone. There is a certificate error on the website that expired on 08/31/23. As a result, the repo can no longer be updated. Untrustworthy. Is the repo no longer available? Thanks in advance …
-
- Program: Recursor, dnsdist
- Issue type: Feature request
### Short description
It would be useful to insert objects into the packetcache directly for both the recursive resolver and dnsdist w…
-
I am connecting to web service with last version `retrofit` but get me bellow error :
`okhttp3.internal.http2.StreamResetException: stream was reset: PROTOCOL_ERROR`
My code is like bellow :
…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x837ffd8ef9213e85aecd0a9d41764f49015d96a5f7910756b43286fdea98045c
**Severity:** medium
**Description:**
**Descriptio…
-
**Describe the feature**
'Passive Authentication' is not currently supported by the library.
https://github.com/gmrtd/gmrtd/blob/a72fc1fc9f71ce12ab9bb34da10e613be2927c04/passive_auth.go#L3-L11
**…
-
There is an additional `nimbus_light_client` binary available in `nimbus-eth2` `unstable` (and, eventually, also on the other branches). It would be interesting to have a few instances of these in the…