Filippo Valsorda
Filippo Valsorda
OpenSSH migrated the `ssh-rsa` key type, which historically used the `ssh-rsa` signature algorithm based on SHA-1, to the new `rsa-sha2-256` and `rsa-sha2-512` signature algorithms. x/crypto/ssh was not ready for the...
SHA-1 is weak: a SHA-1 collision was demonstrated and estimated to cost around $50k. https://shattered.io Accepting SHA-1 signed certificates is a security issue, and lets attackers mount collision attacks if...
It would be nice to have direct links to the App Stores to install the mobile versions of the client, instead of using search and risking installing a malicious app....
PIV tokens can be configured to only require the PIN once in a session. Assuming pivy-agent keeps the PIV session open, it doesn't need to keep the PIN in memory...
It's unfortunate that one needs to remember to provide the PIN with `ssh-add -X` at every reboot. If ssh-askpass is available, pivy-agent could use it to obtain the PIN from...
### Code of Conduct - [X] I have read and agree to the GitHub Docs project's [Code of Conduct](https://github.com/github/docs/blob/main/CODE_OF_CONDUCT.md) ### What article on docs.github.com is affected? https://docs.github.com/en/graphql ### What part(s)...
### Before submitting a *pull request* make sure you have: - [x] At least skimmed through [adding new extractor tutorial](https://github.com/rg3/youtube-dl#adding-support-for-a-new-site) and [youtube-dl coding conventions](https://github.com/rg3/youtube-dl#youtube-dl-coding-conventions) sections - [x] [Searched](https://github.com/rg3/youtube-dl/search?q=is%3Apr&type=Issues) the bugtracker...
Also discussed in https://github.com/FiloSottile/age/discussions/480.
If we choose to print the first argument of unrecognized stanzas, we should update the plugin spec to mention authors should put something recognizable and not sensitive in there, as...
## Platform I’m using: gokrazy/x86-64 ## Expected behavior Regrettably, Intel CPUs constantly need microcode updates to be secure (and sometimes correct!). These upgrades are distributed as initrd images that need...