-
I'm trying to figure out how one would achieve using Github's OIDC w/ AWS AssumeRoleWithWebIdentity.
I can get Github OIDC and aws-actions/configure-aws-credentials to work really well straight out…
-
### Environment
- VerneMQ Version: 1.5.0
- OS: SmartOS (Solaris / Illumos)
- Erlang/OTP version (if building from source): 20.2
### Expected behavior
I expected to be able to have VerneMQ s…
-
**Description**
Positioning SIG would like to create a webinar or video _(may be a series)_ to deep dive into SLSA implementation._(Length TBD)_
**Background**
From [June 14th Meeting](https://do…
-
**Is your feature request related to a problem? Please describe.**
Past problems, including the
log4j vulnerability Log4Shell, have made it abundantly clear to many people that it's important
to …
-
![Flag of the US and China on a microchip.](https://ichef.bbci.co.uk/news/976/cpsprodpb/176ED/production/_130518959_gettyimages-1422453695.jpg)Image source, Getty Images
By Mariko Oi
Bus…
-
Hi there!
Currently using Pop OS and considering switching to secure blue. I’m interested in its features, but I’m concerned about potential supply chain attacks. eg: targeting the developers on GitH…
-
The [MIME Sniffing](https://mimesniff.spec.whatwg.org) standard is quite central to how HTML defines the loading of resources in HTML.
Specifically, in the "[Determining the type of a resource](htt…
-
- [x] I have read the [CONTRIBUTING guidelines](CONTRIBUTING.md)
**Feature request**
It would be great if I could, as `root`, use SDKMAN! to provision software packages not for myself but the enti…
-
Good Afternoon,
Level 3 Communications is pleased to provide the attached response to the American Technology Council Request for Comment. We appreciate the opportunity the council has afforded …
-
## What is the Problem Being Solved?
Today we discussed an attack in which off-chain clients use the published "terms" of a contract to access the TimerService it is using, and then instruct that s…