-
Reopening this since Polyfill is just closing issues in an attempt to cover this up.
https://www.bleepingcomputer.com/news/security/polyfillio-javascript-supply-chain-attack-impacts-over-100k-sites…
-
**Describe the issue:**
Our documentation
https://docs.camunda.io/docs/next/self-managed/setup/guides/using-existing-elasticsearch/#connecting-to-existing-elasticsearch-with-a-self-signed-certifi…
-
# Bug Report
## Installation Method
- Docker
## Environment
- Latest Open-WebUI
- Both Firefox and Chrome
## Expected Behavior:
Visiting the API docs page would render the Swagger page.…
-
Hi Team,
on running the command:
docker run --rm ossillate/packj audit -p pypi:requests
I get the following error.
"Failed to dump json content to file /tmp/packj_audit_4414d88z/report_zw4uc_a…
-
https://github.com/lackdaz/saddle/blob/fbc58a1efa37a2f4ce4c2b6588596c21feaf650a/saddle.sh#L17
A specific commit should probably be referenced and signature(s) of pishrink itself checked.
-
### Type
Suggestions for Improvement
### What would you like to report?
**Context**
One of the parts of the supply chain in modern ML systems is MLOps software - like i.e. MLFlow, Prefect et…
mik0w updated
5 months ago
-
### Application contact emails
atul@sgnl.ai, erik@sgnl.ai, chiranjeewee@sgnl.ai
### Project Summary
Assure identity and context in microservices call chains
### Project Description
Trat…
-
https://therecord.media/codecov-discloses-2-5-month-long-supply-chain-attack/
-
## Date
Thursday 20 Jun 2023 - 09:00 EST / 14:00 UK
## Untracked attendees
| Name | Firm | Comment |
| :--- | :--- | :------ |
## Meeting notices
- FINOS **Project leads** are responsibl…
-
> Most package pages on the npm registry have a link to a source repository, but this information isn’t verified and doesn’t point at any specific commit. With the [code explorer](https://github.blog/…