-
## Your Question
* Documentation File: [`overview-security.md`](https://github.com/corona-warn-app/cwa-documentation/blob/bbf59fa9d9256e44b8134970f91e92cc0c8c02a9/overview-security.md)
* Line …
-
@ShehanSanjula
-
- We have more groups than we need at the moment.
- assigned to all the nodes in all kubs clusters. Firewall that is upstream defined in openstack
- This ticket is an audit to trim the list to what i…
-
Good day,
This was brought up by our security team by one of their scans. I told them I would bring this up to you.
**Cookie Session vulnerabilities:**
1) Clear Text (missing value=secu…
-
It would be great if another pair of eyes could look at the security of the package. In particular the encryption.
Relevant lines are here (only 3: key, nonce and encrypt):
https://github.com/dirk…
-
Let third party company (or multiple companies) audit the core pieces of software: dcrd, dcrwallet, dcrstakepool and maybe Decrediton and mobile wallets.
This can evolve into a 2-stage RFP-like Pol…
-
I'd like to perform an amateur security audit, spot and fix some theoretical weaknesses before the final public release.
Keep tuned.
-
A lot of dependencies used by `@uxpin/merge-cli` are either deprecated, out-of-date or considered as vulnerable.
It leads to a lot of warning messages when installing the tool on a computer.
Th…
-
newspacexyz
High
# Compromise check will prevent malicious operations
### Summary
A missing compromise check in `verifiedProfileIdForAddress` will cause unauthorized access for affected contract…
-
```
What steps will reproduce the problem?
1. When running "select * from db\G" you will notice on a default installation
there are two blank user entries:
*************************** 1. row ******…