-
Purpose: Make sure that CUI instance is onboarding with Security Team and also that they are aware of this effort
- make sure they create Repo for SDE chores
- Create all accounts for team that are …
-
Site is incredibly insecure
-
Found Leaked Sensitive Info !!
Can I have Email ID to add in the details???
-
A separate workshop should be held specifically for overall Security Design (keycloak, access control) with Tazama team in parallel to module based workshops.
-
While bugs in EELS aren't a security issue in and of themselves, EELS is now mature enough that a consensus bug is a sign of serious problems and should be reported privately in the first instance unl…
-
https://docs.spring.io/spring-security/reference/servlet/authentication/passwords/index.html
-
Network Security is very important.
-
Hello,
I have identified two security issues and submitted them for a CVE request. Please coordinate with the relevant authorities regarding these matters:
1. Host Header Injection in Password Reset…
-
### 🛡 4. Security & Auth Improvements
- [ ] **Remove `console.log(JWT_SECRET)`**
- This should never be printed in logs
- [ ] **Improve JWT token setup**
- Add `iss`, `aud`, proper expiration ch…
-