-
The service appears to implicitly trust the user-supplied Host header. If this input is not properly validated, an attacker could inject harmful payloads through the Host header, manipulating server-s…
-
equiring TOTP or security keys for uploading artifacts could prevent attackers from uploading mods to compromised accounts in the event that a signing certificate is leaked; or if signing certificates…
-
Hi folks,
I'm poking around here looking specifically for rationales related to issuance rates. So far it appears the repo contains *only* specification, is that correct? Is there a different home …
-
Lately, I've been looking a bit at [OpenSSF Scorecard](https://securityscorecards.dev/), it is an security assessment for open source projects.
You can see the current score here: https://securitys…
-
A builder provides an `ExecutionPayloadHeader` when offering bids to a given proposer.
The proposer (and specifically the local beacon node the proposer is running) should check the header against …
-
**Is your feature request related to a problem? Please describe.**
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
**Describe the solution you'd like**…
-
### Package Name
7-zip
### Tool Name
7-zip
### Package type
SINGLE_EXE
### Is the tool a console application?
true
### Tool's version number
23.01
### Category
Utilities
### Tool's authors…
-
https://www.clinical-innovation.com/topics/privacy-security/minnesota-dhs-issues-notice-residents-data-breach
-
Security Notions for Fully Encrypted Protocols
Ellis Fenske, Aaron Johnson
https://censorbib.nymity.ch/#Fenske2023a
[PDF](https://github.com/user-attachments/files/16566156/foci-2023-0004.pdf)
T…
-
Please help to fix for Android, there is an exception
Caused by: org.xml.sax.SAXNotRecognizedException: http://apache.org/xml/features/disallow-doctype-decl
…