-
I've grown increasingly concerned with supply chain attacks, which Rust is still vulnerable to, as is pretty much any other growing software ecosystem.
For this reason, we should invest some time i…
-
This PR is for rough ideas on topics and structuring of the book.
- Introduction
- Why security for research software?
- Credentials
- Managing credentials in code
- Time limited access…
-
I want to visualize common 3rd party deps, so I can see which deps are lynch pins and eliminate one-off deps to reduce supply chain attacks.
---
I saw that in antoine-coulon/skott advanced depe…
-
Hello! We're currently planning on automatically installing the SumoLogic OpenTelemetry collector for our services using a pre-deploy hook. Is there any way we can verify the collector binary or insta…
-
https://codeberg.org/
https://about.gitea.com/
BoQsc updated
1 month ago
-
Set the structure of the site according to the following table of content.
Include existing sections in the corresponding chapters
1. Introduction (To be defined)
2.0 Open Source Software Funda…
-
Hi,
We notice that you are using topic names from ROS parameter at the following locations:
https://github.com/tradr-project/tf_remapper_cpp/blob/59eca1c1592ed38f6f042cd258d5f5fc5a6e683f/src/tf_re…
-
### Summary
All reports published by security companies prove that Software Supply Chain Attacks are on the rise. There is no doubt that they will continue to increase in the coming years. With this …
-
The release does not include a JavaScript version.
Also, the recommended install instructions is to load from CDN using jsDelivr or other without SRI.
Best practice is to use SRI which prevents …
-
### Describe the need
Please add github_app as a terraform resource. This is beneficial for temporary development environments (Review Apps) and we would like to remove the application when the resou…