-
There has always been a significant gap between (chosen prefix) collision and (second) preimage attacks on hashes. It would be neat if we do not have to assume (chosen prefix) collision resistance of …
-
One of the parts currently too complicated with Protoconf is the insertion phase, which requires some deep expertise and lots of bash foo. We want to provide a better experience by implementing insert…
-
I wanted to encrypt something using AES in my app so I found the `aes` crate on docs.rs. It mentions the following:
> ⚠️ Security Warning: Hazmat!
> This crate implements only the low-level block …
-
**Chapter Ownership** : @KangHun-Lee
-
## Description
When developing in the container, users may want to submit the commits. But it will fail because there is no public/private key there.
```
⬢ [envd]❯ git push --set-upstream orig…
-
Hi @enkore. I have done some work since you gave me write permissions to this repo. I am considering making a new release. There is still a lot of work to be done but I would like to make a new releas…
-
We produce Linux, Windows and Mac OS X executables/packages. These packages are not signed which makes it difficult to verify the authenticity of the packages. Code signing is also an [essential part]…
-
```
What steps will reproduce the problem?
1. Run Twitter Client and attempt to use twitter client without visiting Twitter
2. Even when supplying a proper Username and Password the application will f…
-
alle Hitobito Instanzen sollen mit einer WAF ausgestattet werden
- Virenscan für Uploaded Files
Umfang:
- [x] Testen auf Integration PBS
- [ ] Eine Woche warten
- [ ] Ausrollen auf allen In…
-
Hi @fiatjaf,
The NIP-05 specification contains the following security constraint:
> The `/.well-known/nostr.json` endpoint MUST NOT return any HTTP redirects.
> Fetchers MUST ignore any HTTP re…