-
We've encountered an issue using large (over 3MB) input YAML files in our quarkus projects. Apparently the custom maximum size for YAML parsing (using SnakeYAML implementation) can be configured using…
-
We should try to get gopass into the official Debian repos. Unfortunately `gopass` is already taken ([ref](https://github.com/gopasspw/gopass/issues/1849)), but maybe a package name of `gopasspw` woul…
-
**Is something not working as expected?**
Because MLHandler accepts feature values through URLs, they have to be coerced into the correct types. This can be too restrictive, because the types are inf…
-
It would be useful if you could specify `--no-deps` for some dependencies, where you do not want pip-compile to include the dependencies, but control it manually.
pip's own options are handled via …
-
The PRs produce by the [`update-charts`](https://github.com/kubewarden/helm-charts/blob/main/.github/workflows/update-charts.yml) automation are not useful.
These are the main pain points:
1. …
-
**Abstract**
Nowadays a lot of applications store configuration in YAML or JSON formats. It would be helpful for security content authors to have a straightforward test for elements of these configur…
-
In theory we could do something like:
```yaml
permissions: write-all # zizmor: ignore[excessive-permissions]
```
...but this is (1) annoying since it requires us to scan the YAML comments, and…
-
**Describe the bug**
Property errors for map keys validation do not handle empty strings. Instead of a path like `metadata.labels.""` we get `metadata.labels`.
**To Reproduce**
Set map key to an …
-
I created this gramex.yaml
```yaml
url:
mlhandler/forecast:
pattern: /$YAMLURL/forecast
handler: MLHandler
kwargs:
data:
url: $YAMLPATH/inflation.csv # Inflation dataset
…
-
I have a yaml file used by a popular software (NewRelic).
When converting (Convetto-Yaml) if the node value starts with a double quote (") it automatically adds starting and closing single quotes t…