Jamie Slome
Jamie Slome
@penandlim - please see https://github.com/yieldfarming/yieldfarming/pull/50 for reference.
We also received another disclosure 2 days ago. You can find the information [here](https://huntr.dev/bounties/2-other-shuup/shuup/).
@vaibssingh - heads up on the above โคด๏ธ ๐
@vaibssingh - reopening this. Are we able to take a look at this issue on the `reconcile` branch and open a pull request pointing there instead of `main`? Thanks for...
Reference: https://github.com/nextauthjs/next-auth/issues/88
This blog has been the most useful in getting CSRF setup, I am getting ever closer: https://medium.com/@sakshi_13861/in-depth-guide-to-counteracting-cross-site-request-forgery-csrf-in-expressjs-8fbe3c36691d
@vaibssingh @maoo - I discovered the fix ๐ช At the app configuration level, `lusca` should be set directly after the `session` has been configured: ```js app.use(session({ ... })); app.use( lusca({...
Hi @coopernetes, thanks for raising the feature request ๐ I'm not familiar with [Open Policy Agent](https://www.openpolicyagent.org/docs/latest/) so bear with me whilst I do some reading of the documentation. A policy...
Sorry for the delay in my response! @coopernetes, thanks for the time you've put into the above ๐ Definitely provides a clearer image of the potential deployment approaches for Git...
@maoo @coopernetes - I'll schedule an open invite call and we can start hashing this out. Generally, happy with reducing overlap where we can between Git Proxy and OPA, but...