-
# Summary
When a Telegram user sends a document file, upload it to an intermediary file hosting service to avoid leaking API key
# Background
**Is your feature request related to a problem?…
-
### Description
I've disabled "Expose Public Match Data" years ago ([activity](https://www.dotabuff.com/players/86846830/activity)), but recently Dotabuff started showing SOME of my public [matches](…
-
### 👟 Reproduction steps
![Screenshot 2023-09-11 184758](https://github.com/appwrite/appwrite/assets/18592683/cb1861d0-6d90-43e4-b7b0-4ff129252b89)
### 👍 Expected behavior
It should connect to th…
-
Currently, in order for a user to to retrieve their API key, they need to manually log in to SNAC and copy out their temporary key. This is sufficient for manual API work, but prevents automated proc…
-
### 🔖 Feature description
Since you are already running an Antivirus, here is another suggestion: Web security scanners. Like skipfish. Like the w3af. Like dictionary / word list attacks. Like Nexp…
-
Hello,
Just wanted to let you know you have your gemini API key in plain text in your codebase (main.py line 5).
If the API key is still active, i would recommend to rotate your key and possibly rev…
-
To enhance the security of web login processes, a more secure and sophisticated approach involves the use of cryptographic keys, as follows:
1. During user registration or password change, leverag…
-
The following final steps should be performed. Preferably in order.
_Things in italics are optional_
- [x] Update Spring Boot to 1.5.8 (see comments below)
- [x] Dependency injection via constructo…
-
# Collection of *potential* security issues in Jellyfin
This is a non exhaustive list of *potential* security issues found in Jellyfin. Some of these might cause controversy. Some of these are desi…
-
I know the ArcGIS authorization tokens expire but it is a PITA to have the set token disappear and require re-authentication every time I reset my session within R.
I have a revised, and re-revised…