-
There are a few interesting linters, STAs that we could add to the CI flow to improve checks:
Flawfinder
https://dwheeler.com/flawfinder/
splint
https://splint.org/
scan-build - exists as a…
-
-
The QR code link includes the https://farajaland.opencrvs.org/... -prefix for the URL. Imagine someone adding their own QR code with https://farajaland.0pencrvs.org/... and showing something that does…
-
-
-
I don't understand the purpose of the security code scheme you have.
How toasting a number and requiring the user to input that number is going to increase security in any way?
It looks just an anno…
-
It would make CircuitPython a real killer environment for commercial solutions if there was some kind of support for modern software security features in the uCs.
I could imagine several routes for…
-
Sorry for the late email. I promised I will send an email to describe what I have done for hydra security. Here's the description of my code:
1/ envelope: https://github.com/tianyuan129/trust-info-…
-
Consider removing security codes from the SXL. They are not secure since they are send as clear text.
They cause a conflict with the core spec, since if you send the wrong codes, the site is supposed…
-
**This is a design limitation, without an immediate fix.**
## Summary
(Rewritten for clarity)
- Users of cdxgen are known to run the tool against both trusted and untrusted codebases
- cdxgen …