andrewhowdencom
commented
4 years ago - Dependency management in CI
- Refusal to connect via HTTP (somehow). At least, refusal to follow redirects.
Open andrewhowdencom opened 4 years ago
andrewhowdencom
commented
4 years ago andrewhowdencom
commented
4 years ago Investigate "open policy agent"
andrewhowdencom
commented
4 years ago mTLS even for localhost (figure it out with debian packaging, of generate it via cli).
Also, bind to Unix domain socket by default and not port.
Lastly, run as custom user.
—
Prevents browsers accessing localhost resources.
andrewhowdencom
commented
1 year ago Security.txt (securitytxt.org)