-
**Description of the false positive**
When `HttpServletResponse.setHeader` is passed untrusted user input, CodeQL always flags this as HTTP Response splitting. However, as far as I can tell, most o…
-
```
HTTP splitting attack in WebGoat is demonstrated on a code, which is actually
not vulnerable to HTTP splitting itself (at least not in common today's
browsers). This makes it confusing to the st…
-
* ran `shellcheck` (a bash linter) on `./`
* add `shopt -s nullglob` to `_cabal_list_targets`
1. lint with shellcheck:
```
$ shellcheck ./cabal/cabal-install/bash-completion/cabal
^-- SC2…
-
# splitting
In order to generalize the splitting to 2d & 3d, we need first to define the way to store all the weights & delta values. The 3 arrays below are associated to dimension = 1, 2 & 3. For …
-
We should consider making the flag in practice mode something a bit more realistic, such as `pwn.college{PRACTICEfakeFLAGpracticeFAKEflagFaKeFlG}`. This keeps the length realistic and makes, e.g., AES…
-
In Nextjs 13, in order to send requests to server components, there must be no hooks in the file containing the function to be used.
We need to be able to extract requests and hooks into separate f…
-
I am working on a tool for my team to prep files for upload to cloud services as an archive. One of the steps is to turn bundle file types (.aplibrary, .fcpbundle, etc) into a single file for upload …
-
Hi!
I wonder if you have tackled or thought about code-splitting yet. It is kinda important to have some sort of code-splitting support. I want to use a react component only on one page but becaus…
-
### Feature Overview
Introduce Manual Lock Mecanism.
### Why is the feature needed?
Sometimes we want to prevent accessing Terraform State and some terraform commands such as plan, apply and import…
-
![image.png](https://raw.githubusercontent.com/Yvorm/pe/main/files/addcc607-3891-49ff-b142…