Jaroslav Lobačevski
Jaroslav Lobačevski
This code (regex with \\.) triggers unexpected token: `var isHtml = /\.html$/;`
While it is obvious that this is a demo project, it looks maintained and may be used as a template for a real project. ## Summary [reactjs-ts-identityserver](https://github.com/ThunderDev1/reactjs-ts-identityserver) is vulnerable to...
While it is obvious that this isn't a production project, it may be used as a template for real project. It may be an option to state in the readme,...
# GitHub Security Lab (GHSL) Vulnerability Report: `GHSL-2021-103` The [GitHub Security Lab](https://securitylab.github.com) team has identified potential security vulnerabilities in [erxes](https://github.com/erxes/erxes). ## Tested Version The latest version to the date. ##...
Hello, We have sent an email with security report to the BatAmar public email some time ago, but didn't hear back. What is the best way to report a potential...
Please provide a way to report about potential security vulnerabilities in the project.
## Summary [ChristDDD](https://github.com/anjoy8/ChristDDD) is vulnerable to Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) that may lead to the elevation of privileges and per-user denial of service (DoS). ## Details...
From https://kristhecodingunicorn.com/post/dotnet_sast_scs/ There are some limitations in the Security Code Scan tool that I've discovered while implementing it in my application that might be relevant for you to be aware...
Add CWE info to exported SARIF file. See https://docs.oasis-open.org/sarif/sarif/v2.0/csprd02/sarif-v2.0-csprd02.html#_Toc10127727 for examples - [ ] Implement in SARIF exporter in .net tool - [ ] In github action conversion