-
## Bicep's public registry feature should include security features to protect enterprise environments
**Problem description**
Bicep is planning to release a version containing functionality tha…
-
Base Metals has several metal-specific abilities -- extra power against undead, slow auto-repair, etc. -- that spices things up. Why not add the same to Modern Metals, but with modern-style effects:
1…
-
# Gitcoin Security Bounty Program
Gitcoin is an open-source marketplace with our code available for inspection and research. If you discover a severe bug affecting the privacy, data, or security of…
-
Hi,
I am trying out an ettercap filter to modify TCP payload of a packet on the fly. The filter is successful in modifying the data. But when I capture the packets using Wireshark, I am seeing b…
-
# URL
- https://arxiv.org/abs/2306.17194
# Affiliations
- Manli Shu, N/A
- Jiongxiao Wang, N/A
- Chen Zhu, N/A
- Jonas Geiping, N/A
- Chaowei Xiao, N/A
- Tom Goldstein, N/A
# Abstract
- …
-
Currently, restic threat model assumes that host which is being backed up is fully trusted; that assumption is reasonable. For certain backends, there is a support for an _append only_ mode, which hel…
-
Vulnerable Library - prophecy-libs_2.12-3.3.0-7.0.12-fixdeps-SNAPSHOT.jar
Path to dependency file: /pipelines/test/code/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/com/type…
-
Hi,
First off, thanks for open sourcing your interesting work! In the context of a larger security evaluation of Intel SGX runtimes, together with colleagues from KU Leuven and the Universtity of B…
-
I can't seem to figure out the issue here and hoping someone can pinpoint what's escaping me. If I manually type the alias string, all is well. When I run the script, I get the following:
```
Ch…
-
Mozilla recently put in [SRI](https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity) support into Firefox. If a script tag has a SRI attached, and it matches the hash of a known,…