-
Sorry for the late email. I promised I will send an email to describe what I have done for hydra security. Here's the description of my code:
1/ envelope: https://github.com/tianyuan129/trust-info-…
-
It would make CircuitPython a real killer environment for commercial solutions if there was some kind of support for modern software security features in the uCs.
I could imagine several routes for…
-
Consider removing security codes from the SXL. They are not secure since they are send as clear text.
They cause a conflict with the core spec, since if you send the wrong codes, the site is supposed…
-
We are only one best practice away from transitioning our OpenSSF badge from in-progress to passing! Thanks @hugovk and @radarhere for re-raising this in #7610.
I remember discussing this in the pa…
-
**This is a design limitation, without an immediate fix.**
## Summary
(Rewritten for clarity)
- Users of cdxgen are known to run the tool against both trusted and untrusted codebases
- cdxgen …
-
Hello,
First, I would like to thank you for your work and effort; tunblkctl is really useful.
In my case, the VPN requires an additional security code (TOTP). I would like to know if it is possi…
-
DAOSpace 的设计上有一些安全方面的难题暂时没有好的方案,或者方案太复杂会影响使用体验。所以先列举在这里,可以逐步改进:
- [ ] 插件升级可能带来的安全隐患。如果插件开发者是恶意开发者,或者开发者的账号被盗,插件升级后会给使用该插件的 DAO 带来安全问题。这个包括插件合约和插件前端。但由于合约无法同时保留多个版本,所以只是前端保留多个版本也意义不大。
- [ ] 前端插件的风险…
-
-
### Describe the bug
The current [security provider registration code](https://github.com/quarkusio/quarkus/blob/main/extensions/security/deployment/src/main/java/io/quarkus/security/deployment/Secur…
-
### Check for previous/existing GitHub issues
- [X] I have checked for previous/existing GitHub issues
### Description
Hi,
This is general question for any module and not specific to Key Vault. …