-
Description:
A authenticated malicious user can take advantage of a Reflected XSS vulnerability in the "Knowledgebase" feature. This was can be bypassed by using HTML event handlers, such as "ontoggl…
-
## Proposal: Maintain 'classic' vendor behaviour
This is a proposal to keep resolution of 'vendored' code consistent with the behaviour possible in `go1.16
-
## TL;DR:
**Q1:** For the JS API, does [PCM](https://wicg.github.io/ad-click-attribution/index.html) expect advertisers to calculate the conversion bits dynamically (e.g., potentially delegate the …
-
Hello.
Have you any plans about EWS (Eschange Web Services) support?
Office 365 accounts with F1 (prev K1) license does not support IMAP but support EWS.
I known that Office 365 has web interface) …
-
**Module loader** is a concept of trusted web application assembly from locally and CDN cached of transformation pipelined modules.
Once implemented it would allow to
* manage web application modu…
-
@craigfrancis wrote in #18.
>
> I'd prefer the per-element custom config, rather than separate lists for tags and attributes.
>
> But could it go a little further, so the attributes can specif…
-
### Preflight checklist
- [X] I could not find a solution in the existing issues, docs, nor discussions.
- [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/kratos/blob/ma…
-
# Altermail: Secure data integrity sharing model based on a three-tier system
## Project Description
"Altermail intends to be a privacy-preserving secure communication platform leveraging Secret C…
-
We're working on a new API for inter-app communication, so apps can send/receive messages to/from each other.
This will be the basis of initiating Collaboration from 1st and 3rd party apps, as well…
sampi updated
6 years ago
-
> Unlike HTTPS Everywhere, this extension doesn't take care of sub-requests triggered from HTTP-only sites. For now, it outright ignores those requests, because using the same approach with those (ret…