-
# Potential security issues in GitHub Actions workflows
Hi! We are a research team from Radboud University in the Netherlands, currently working on security vulnerability analysis on GitHub Actions wo…
-
Should consider migrating to SARIF output for our custom checks.
For example SARIF can be generated from python like so:
```python3
from sarif import *
# Create a new SARIF file
sarif_file = …
-
Hi, I was looking around but there is nothing in this project regarding security static code analysis. Is there any plan to implement that in the future?
Thanks
-
## Problem
A non-urgent but important issue is security. If a prototype is deployed, it is subjected to all kinds of attacks and security scans. We don't have good insight into its security character…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
Running Istio 1.23 a…
-
https://citizenlab.ca/2024/10/should-we-chat-too-security-analysis-of-wechats-mmtls-encryption-protocol/
Great work, Citizen Lab team. While these findings aren't entirely new, your strong assertio…
-
WDYT? Is this publication in scope?
```
@article{He_2025,
author = {He, Dalin and Wang, Huanyu and Deng, Tuo and Liu, Jishi and Wang, Junnian},
doi = {10.1016/j.cose.2024.104135},
issn = {0167-4048…
-
as Carola Lilienthal pointed out, "Security Analysis" is currently missing from the ANALYZE phase.
Will include that as a reminder (and will start with the topic-map diagram)
-
Objective:
Identify potential security vulnerabilities in the authentication system by performing automated scans using established security tools.
Task Description:
Use the configured securi…
-
There should be a formal security analysis supporting why this design is secure. The main things to analyse are:
- The one-time pad (OTP) based encryption scheme used to encrypt the PIN codes. The mai…
dbosk updated
8 years ago