search

quantuminformation / test-recorder

Records acceptance tests for web applications. Chat on Supports Ember, Nightwatch, Chromeless (WIP). Soon TestCafe.
MIT License
49 stars 8 forks source link

Vulnerability report #45

Open JafarAkhondali opened 3 months ago

JafarAkhondali commented 3 months ago

We are a group of researchers from Leiden University, and we conduct research on vulnerabilities in open-source software. We have discovered and verified a high-severity vulnerability in your project(quantuminformation/test-recorder). Explaining the vulnerability further in this issue could allow malicious users to access details, so we recommend enabling private vulnerability reporting on GitHub to discuss this matter confidentially. After you have enabled this feature, please add a comment to this issue so we can continue our discussion. If you have any questions, feel free to leave a reply here or send an email to: j.akhoundali [at] liacs.leidenuniv.nl

quantuminformation commented 3 months ago

prs welcome

Kind regards Nikos Katsikanis https://nikoskatsikanis.com Tech Innovation | Podcast Host | Linktr.ee https://linktr.ee/nikosshow

On Wed, 5 Jun 2024 at 20:14, Jafar Akhondali @.***> wrote:

We are a group of researchers from Leiden University, and we conduct research on vulnerabilities in open-source software. We have discovered and verified a high-severity vulnerability in your project(quantuminformation/test-recorder). Explaining the vulnerability further in this issue could allow malicious users to access details, so we recommend enabling private vulnerability reporting on GitHub https://docs.github.com/en/code-security/security-advisories/working-with-repository-security-advisories/configuring-private-vulnerability-reporting-for-a-repository to discuss this matter confidentially. After you have enabled this feature, please add a comment to this issue so we can continue our discussion. If you have any questions, feel free to leave a reply here or send an email to: j.akhoundali [at] liacs.leidenuniv.nl

— Reply to this email directly, view it on GitHub https://github.com/quantuminformation/test-recorder/issues/45, or unsubscribe https://github.com/notifications/unsubscribe-auth/AABU35RWCALOGAU5MSWTOQTZF5PSNAVCNFSM6AAAAABI3KNJMCVHI2DSMVQWIX3LMV43ASLTON2WKOZSGMZTMNRVGA2DMNI . You are receiving this because you are subscribed to this thread.Message ID: @.***>