-
As discussed in #67, where threats to data flows are caused by issues in Client Channels (client-service relationships) there is a case for restricting the threat so they are only caused by Client Cha…
-
- [x] Update architecture diagram - external service, agenct user, ports, cloud.gov access, etc Review narrative.
- [x] Revisit other diagrams in SSPP
- [x] Systems in diagram should match the narra…
-
**Affects:** \
---
I have a requirement of protecting APIs from XSS injection. I think HtmlUtils.htmlEscape(String inputString) can possibly check if the input contains possible XSS injection.…
-
in the “How to Prevent” section there is a bullet around Human detection. This prevention I don’t believe to be a viable option in an API as ultimately it is code which is the API consumer and thus C…
-
### What happened?
Just installed crowdsec in docker and trying to parse home assistant logs with crowdsecurity/home-assistant in my collections and the log is not being parsed at all. I'm using hom…
-
I set the Wasm EnvoyFilter as follows, and the config_dump is also effective, but I used sqlmap zaproxy to simulate the attack, and I did not see the log output of wasm denial of the attack, even if…
-
Hello @balzack , thank you very much for this awesome project!
I would like to submit the request to have the URLs clickable/tappable within the conversation messages. At the moment users neither can…
-
Use-case:
https://github.com/razorpay/frontend-website/pull/2198#discussion_r1243105412
-
## Request for Mozilla Position on an Emerging Web Specification
* Specification Title: Declarative Shadow DOM
* Specification or proposal URL:
- [Explainer](https://github.com/mfreed7/declarat…
-
### Template Information:
The base was taken from id: cache-poisoning which is just info but in some time this can be escalated to stored xss with severity high.
### Nuclei Template:
…