-
Refused to frame 'https://vscode.dev/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".
-
Hi,
Thx for this template, very useful ! :pray:
Many resources suggest using an unprivileged user in container in order to prevent privilege escalation attacks(e.g. OWASP https://cheatsheetserie…
-
## Problem
The off-chain attacks section is pretty cool, and not something a lot of people consider. However the google sheets does not really mention any resources, guides, etc.. to combat against…
-
The google-services.json file is currently tracked in the repository, which contains sensitive information such as API keys, OAuth client IDs, and project information. This could lead to security vuln…
-
Hi, our project utilizes a lot of dash plotly packages (really appreciate all your work!), and would like to leverage dash-ag-grid for some new functionalities under design/development.
However, we ar…
-
Lab TA will continue trying to hack your project group's web application against a checklist (that is not shown to you) and if it survives, we will consider that it is safe enough. For testing purpose…
-
Hi,
As we have discussed it on WordCamp Gdynia - it would be great to have a flag which will allow users to limit access of the WordPress Playground instance to the local network. This can improve se…
-
I’d like to request the addition of a runtime type casting feature for Typia, similar to how typia.http.query works. The idea is to have the ability to cast fields in an object to their expected types…
-
### Description
### Issue Description:
The password field currently allows the input of special characters (e.g., , ), which can lead to client-side injection attacks. This poses a security risk as …
-
The peer-to-peer (P2P) network is currently vulnerable to DDoS attacks. To enhance the security and stability of the network, we need to implement rate limiting across various interaction points. Thi…