-
**User Story**: Security Audit
**Tasks**:
- Perform security audits for common vulnerabilities (Due: 2024-12-05)
-
- Slither Output: https://gist.github.com/langnavina97/7809bbf67a0cffb71575d605ee0cc778
-
Hello,
I am one of the [openSUSE websocat package]() maintainers.
The package build routines nowadays include a check via cargo audit to only allow updates without security vulnerabilities.
The c…
-
## Problem
Currently, there's no integrated way to audit dependencies defined in `pyproject.toml` and `uv.lock` against known security vulnerabilities in the [Python Packaging Advisory Database](ht…
-
# Summary
Add security audit logging per OWASP recommendations. https://cheatsheetseries.owasp.org/cheatsheets/Logging_Cheat_Sheet.html
# Motivation
For example, we currently don't log failed…
-
The idea is to add security analysis tool like [auditjs](https://github.com/sonatype-nexus-community/auditjs) to eliminate potential risks in release flow.
This can be done both for current and new…
-
Hi,
as an avid but paranoid self-hoster, I am considering hosting headscale on a cheap VPS in order to establish VPN connections between my devices. The distrust of the closed-source Tailscale coord…
-
**Describe the bug**
Signed audit logs are to be enabled for each service. These have been done in the persister configurations here. But there are no corresponding logs in the DB.
```
pucar-uat…
-
We can do incremental Audit also, in Alpha and after in Beta.
-
The security SIG is looking to ensure that security tooling is setup consistently across the organization. As a result, we're asking maintainers to ensure the following tools are enabled in each repos…