-
At the time of writing, the state of `servant-auth` has a margin of improvement when it comes to both design, security and supported authentication schemes. I would like to take the time with industri…
-
Here is the simple form which doesn't have any csrf tokens to send to the server:
```html
Test API authentication
Sub…
beibl updated
4 years ago
-
### Comment:
## elevator pitch
Provide a low-barrier way to make precise, pre-validated admin requests.
## motivation
After looking at the GH PR templates feature (suggested in #535), I wa…
-
Vulnerable Library - axios-0.21.1.tgz
Promise based HTTP client for the browser and node.js
Library home page: https://registry.npmjs.org/axios/-/axios-0.21.1.tgz
Path to dependency file: /package.j…
-
```
What steps will reproduce the problem?
1. According to the servlet spec, sessions must be explicitly turned on in
code (a call to getSession(true) must be executed)
2. GAE follows the spec, so en…
-
I have a fairly large repo with 41,000 commits, 2,400 tags, and 15,000 total PRs and issues. I ran `gren changelog --generate` for 7 hours overnight and it never moved past the "Getting tags" state.
…
-
Hi ,
I'm trying to insert a metadata with the rest api.
I generated the client using the example described here : https://docs.geonetwork-opensource.org/3.12/api/the-geonetwork-api/#building-client-…
-
Cross site request forgery (CSRF), also known as XSRF, Sea Surf or Session Riding, is an attack vector that tricks a web browser into executing an unwanted action in an application to which a user is …
-
I reverse-engineered a bit to understand the Members message IDs.
Defined in Members `lib/class.membersevent.php`:
```
const MEMBER_ERRORS = 104;
const MEMBER_INVALID = 105;
const SECTION_INVALID =…
-
**Describe your environment**
opentelemetry-api==1.9.1
opentelemetry-sdk==1.9.1
opentelemetry-instrumentation-tornado==0.28b1
python 3.8 alpine docker image
enabled traces using SimpleSpanProces…