-
The following section Implementation/Secure Build/Build Process (Maturity Level 2) has the following line "Finally, add appropriate automated security checks (e.g. using SAST tools) in the pipeline to…
-
* unsafe code in deserialization could be exploited (would give access to analytics server, which is worse than ingestion)
* zip bomb possible - validate how lz4 could be exploited
-
Today, the action reports the result of the "validation" in the output of the pipeline, and it raises/publishes the results to the "portal".
But, in the GitHub Actions pipeline, then it just "succe…
-
Key Points for Summary:
- Cloud-Native Security: Cloud-native applications bring new security challenges like securing microservices, containers, and API communications.
- Zero-Trust Architec…
-
**Is your feature request related to a problem? Please describe.**
I understand that a recent change was made to move from access tokens to rotating API keys to enhance the security of the Microsoft …
-
- [x] Branching Strategy - PR Mechanism
- [x] Securing the state file - import local state to remote state
- [ ] Self-Hosted Agents for Pipeline
- [ ] Pipeline Check - Test Cases
1. Plan should su…
-
Hi, our project utilizes a lot of dash plotly packages (really appreciate all your work!), and would like to leverage dash-ag-grid for some new functionalities under design/development.
However, we ar…
-
##### **Overview of the issue**
JHipster is failing silently on node 22 if pipeline tasks like conflicter/prettier fails.
##### **Motivation for or Use Case**
##### **Reproduce the …
-
**Describe the bug**
As soon i start using backend block, init failes with error
_**api error InvalidClientTokenId: The security token included in the request is invalid.**_
**To Reproduce**
St…
-
### Terraform Version
```shell
Terraform v1.3.1
```
### Use Cases
I want to be able to run commands on an ec2 instance (for example) on the pipeline. Since the pipeline runner is not insi…