-
I think I'm missing something important. On our staging server (default cache) rack attack is working properly as well as in development. In production however we use the "mem_cache_store" via dalli.
…
-
-
If I look at the experiment values, there seems to be a lot of invalid data.
I know we did some work recently on improving the tracking of experiments. Could this be an unintentional bug as a resu…
-
As mentioned in #158, we should have section on front-end security!
Topics can include:
* Understand the same-origin policy
* XSS attacks and mitigation strategies
* Avoid manually constru…
-
Good morning, friendly TAG!
I'm requesting a (p)review of:
- Name: `sec-metadata`
- Specification URL: None yet.
- Explainer, Requirements Doc, or Example code: https://github.com/mikewe…
-
### Device: Samsung Galaxy s6 Edge+
### OS version (KitKat/Lollipop/Marshmallow/Nougat): Marshmallow 6.0.1
### Built from repo (date and build command) or downloaded from website (links)…
-
Select from the menu:
1) Spear-Phishing Attack Vectors
2) Website Attack Vectors
3) Infectious Media Generator
4) Create a Payload and Listener
5) Mass Mailer Attack
6) Ardui…
-
Give the user an error if any of the following are true:
A. `slug` doesn't match `/^[\w\-]+$/`
B. there's a querystring
C. there are any slashes except for the `/by/` part
Test cases:
…
-
Hello. Thank you for this gem. I use it on my project and it is great!
Recently I tried to update the project to ruby 2.5. Unfortunately I immediately get the following error:
NameError · uninit…
-
One important topic that has not been covered is the use of security providers and the patching of some of them.
For instance:
- there are various versions of "altered" bouncey-castles delivered wit…