-
### Community Note
* Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the com…
-
Hello,
While I was trying to implement h2database for my personal project one function seemed to be vulnerable.
According to my CI tool it states that [JakartaDbStarter.java](https://github.com/h…
-
Right now we have static credentials hardcoded inside `test/integration/handlers/test_ride_request`. Would lik to figure out how to replace this with dynamically generated credentials. Not sure how …
-
### Summary
Some of keycloak modules( example [keycloak_realm.py](plugins/modules/keycloak_realm.py) ) don't allow to use grant_type = client_credentials.
In argument I can't define auth_client_sec…
-
**Is your feature request related to a problem? Please describe.**
The aind-slims-api should be useable for both dev and prod slims deployments. Instead of hard-coding the domain, let's have it as a …
-
- [ ] Auditing of action definitions (i.e. `action.yml`) #173
- [x] Accidental credential persistence
- [x] "ArtiPACKED"
- [x] Insecure/fundamentally dangerous workflow triggers
- [x] `pu…
-
I'm sure this makes the initial point-and-click setup easier for new users, but I don't like the idea of my database username/password being publicly known and hardcoded. Is there a way to specify cre…
-
### Expected Behavior
It should be valid to use any *managed* custom `Credentials` implementation with `ProviderFactory#credentials`. Gradle has all the features internally to identify the …
-
Remove hardcoded access token
-
Running Kics github action 2.0 on lambda with following environment variables:
```
apiCredentials =
entity =
logLevel =
progressMarker =
region =
targetBucket =
```
Results in:
```…