search

OWASP / www-project-top-10-for-large-language-model-applications

OWASP Foundation Web Respository
Other
524 stars 134 forks source link

LLM07 - website link still in markdown format #266

Closed rossja closed 4 months ago

rossja commented 8 months ago

need to edit the entry for llm07 on the llmtop10.com site such that the following link is html-ized:

Finally, LLM Plugin extensions can bring their own vulnerabilities. These are described in [LLM07 - Insecure Plugin Design](InsecurePluginDesign.md),
mkfnch commented 5 months ago

@rossja Is this still an issue in @SClinton's latest WordPress build?

SClinton commented 4 months ago

I saw this; just a reminder that you, Jason @rossja, and Ads @GangGreenTemperTatum have edit rights for this.

GangGreenTemperTatum commented 4 months ago

@SClinton i thought that @mkfnch had an action item to redirect llmtop10.com to the new site https://genai.owasp.org/?

I saw this, just a reminder that you Jason and Ads have edit rights for this.

Internal slack thread here https://owasp.slack.com/archives/C05CM6DUZ1D/p1716083197637669 .. this is preferred and also makes this GH issue redundant + any others related

SClinton commented 4 months ago

Yup, he is going to hand it over to Jason at OWASP directly. Jason is out Today, so he may have sent the credentials. Once he does I’ve already given Jason the name server A records and IPs which he used with the other domains.  Should be a super quick edit.

From: Ads Dawson @.> Reply-To: OWASP/www-project-top-10-for-large-language-model-applications @.> Date: Monday, May 20, 2024 at 2:24 PM To: OWASP/www-project-top-10-for-large-language-model-applications @.> Cc: sclinton @.>, Mention @.***> Subject: Re: [OWASP/www-project-top-10-for-large-language-model-applications] LLM07 - website link still in markdown format (Issue #266)

@SClinton i thought that @mkfnch had an action item to redirect llmtop10.com to the new site https://genai.owasp.org/?

I saw this, just a reminder that you Jason and Ads have edit rights for this.

Internal slack thread here https://owasp.slack.com/archives/C05CM6DUZ1D/p1716083197637669 .. this is preferred and also makes this GH issue redundant + any others related

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you were mentioned.Message ID: @.***>

GangGreenTemperTatum commented 4 months ago

I saw this; just a reminder that you, Jason @rossja, and Ads @GangGreenTemperTatum have edit rights for this.

It needs to be done at the DNS layer which is part of access I don't have @SClinton

SClinton commented 4 months ago

I assume mike does.

From: Ads Dawson @.> Reply-To: OWASP/www-project-top-10-for-large-language-model-applications @.> Date: Monday, May 20, 2024 at 2:33 PM To: OWASP/www-project-top-10-for-large-language-model-applications @.> Cc: sclinton @.>, Mention @.***> Subject: Re: [OWASP/www-project-top-10-for-large-language-model-applications] LLM07 - website link still in markdown format (Issue #266)

I saw this; just a reminder that you, Jason @rossja, and Ads @GangGreenTemperTatum have edit rights for this.

It needs to be done at the DNS layer which is part of access I don't have @SClinton

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you were mentioned.Message ID: @.***>

mkfnch commented 4 months ago

@SClinton I definitely don't have access to the DNS records of domains owned by OWASP.

GangGreenTemperTatum commented 4 months ago

sounds good! i'll close this issue off then in anticipation. i definetely do not have access to the DNS registrar and not sure who set this up.

   Domain Name: LLMTOP10.COM
   Registry Domain ID: 2796026425_DOMAIN_COM-VRSN
   Registrar WHOIS Server: whois.1api.net
   Registrar URL: http://www.1api.net
   Updated Date: 2024-05-20T15:53:17Z
   Creation Date: 2023-07-05T16:58:26Z
   Registry Expiry Date: 2024-07-05T16:58:26Z
   Registrar: 1API GmbH
   Registrar IANA ID: 1387
   Registrar Abuse Contact Email: ***@***.***

Message ID: <OWASP/www-project-top-10-for-large-language-model-applications/issues/266/2121241431 @github.com>

GangGreenTemperTatum commented 4 months ago

strange, https://llmtop10.com/ is being worked on right now by somebody outside of us as if you try to hit it, there is a stream of tens of 307 redirects, perhaps this is being worked on right now?

GangGreenTemperTatum commented 4 months ago

i see that we can actually do this in hostinger too i tried to set this up but believe it conflicts with whatever Jason is doing as per my last comment