-
Recommending that users clone the repo to have control over its content is not bad, but a security-conscious user should also care about any opaque files, such as packages or binaries. So:
Why are …
-
Add go vul checker to the CI testing along with the other security tooling scans.
https://go.dev/blog/vuln
/triage accepted
/kind feature
/priority backlog
/good-first-issue
/help-wanted
-
# ISSUE
## Overview
While Rust already does a lot to [generate secure binaries](https://doc.rust-lang.org/rustc/exploit-mitigations.html), it may be good to have additional sanity checks that ru…
-
Does arangors require any linked Linux user-land components?
I'm looking for a way of creating single binaries that use arrangodb servers that can be instanced as a single file in a "from scratch" …
-
### Prerequisites
- [X] Write a descriptive title.
- [X] Make sure you are able to repro it on the [latest released version](https://github.com/PowerShell/PowerShell/releases)
- [X] Search the existi…
-
## Background
Currently `ctr install` is limited to installing plugin images which are either statically compiled or contain `lib` dependencies. This is complicated when a plugin binary is not static…
-
We need to make binaries deployed in production auditable for known security issues. This may include non-trivial deployment methods, such as:
* Plain old `cargo install`
* An executable inside …
-
As can be seen at https://repology.org/project/fs-repo-migrations/versions, the latest fs-repo-migrations version in every repository is still 1.7.1. Version 2.0.1 was released on 01 Apr 2021, which i…
-
**Describe the enhancement**
Propose a change for Fedora editions to make sure that no new SetUID/SetGID binaries are added to an edition default installation without a security evaluation and a re…
-
Hello,
While following the process to build the testbed with docker, I face the following errors:
``Connection failed [IP: 91.189.88.142 80]
Ign:34 http://archive.ubuntu.com/ubuntu xenial-back…