-
Integation test for CI requirement:
1. 编译项目 runner 调用 excute 由shell改成docker;
2. 构建镜像 runner 调用 excute 由shell改成docker(非必要)
3. Runner 全局作用域 or 仓库作用域 -- 咨询万工
(一个工程一个runner)
-
I've tested @peculiar/webcrypto package 1.4.3 on node 21.1.0 and verified that's it's vulnerable to the [Marvin Attack](https://people.redhat.com/~hkario/marvin/).
The size of the side channel is v…
-
It seems like the signup functionality on the website allows users to set names & username of excessively long length, potentially ranging into hundreds of thousands of digits. This can lead to severa…
-
**Description:-**
Vulnerability:- XMLRPC file enabled which leads to DoS , Port Scanning and auth brutefroce attack.
Vulnerable Domain:- [blog.blockstack.org](http://blog.blockstack.org/)
Ste…
-
### Query PR
https://github.com/github/codeql/pull/16813
### Language
GoLang
### CVE(s) ID list
CVE-2023-28109
CVE-2024-27302.
### CWE
CWE-639
### Report
Most Go frameworks provide a functi…
-
### Query PR
https://github.com/github/codeql/pull/16824
### Language
C#
### CVE(s) ID list
CVE in disclosure process
### CWE
CWE-295
### Report
If a `RemoteCertificateValidationCallback` del…
-
# https://hackerone.com/reports/2270050
Your P2P is hardened against most network style DoS/crash attacks. I prefer P2P DoS so much more; but API DoS is super important (wallets, explorers, etc.) a…
-
## The devDependency [karma-jasmine-html-reporter](https://github.com/dfederm/karma-jasmine-html-reporter) was updated from `1.4.2` to `1.5.0`.
🚨 [View failing branch](https://github.com/hisptz/90-9…
-
Would it be possible to use this in combo with the ldn python package to somehow mimic the island transfer tool behaviour?
The ldn package would be the best of the two I guess considering that the is…
-
I am not getting any output but just this message. Is anyone facing same issue?