Kim Carter

https://binarymist.io

binarymist Land of the Long White Cloud Founder of BinaryMist, Creator of PurpleTeam-Labs, Author of Holistic Infosec for Web Developers, Host se-radio.net, Co-founder ChCon.nz ,

Results 59 issues of


                                            Kim Carter

purpleteam now at alpha

2

comment

@ckarande Any thoughts on trashing the security regression tests now that purpleteam is in alpha and also an OWASP project? * https://github.com/OWASP/NodeGoat/wiki/NodeGoat-Security-Regression-tests-with-ZAP-API * https://github.com/OWASP/NodeGoat/blob/master/test/security/profile-test.js https://owasp.org/www-project-purpleteam/ Also any thoughts on how...

Error on merging github pull request

16

comment

When I merge (every merge) a pull request generated by my staticman instance hosted on heroku, I receive the following error: ``` 2021-04-22T02:30:20.417355+00:00 heroku[router]: at=info method=POST path="/v1/webhook" host=bmstaticmaninstance.herokuapp.com request_id=569654ed-47b1-4337-a1fd-27260ac51ce2 fwd="140.82.115.246"...

Email notification sent for every subscriber to every other subscriber

5

comment

Here is the scenario: I have a blog post: https://binarymist.io/blog/2018/02/24/hugo-with-staticman-commenting-and-subscriptions/ At the time of submitting this, there are three commenters, of which all have subscribed. When any one of the...

Mail list item not being persisted to Mailgun

1

comment

I'm noticing subscibes to a mail list not actually be persisted to the mail list. I get the email that someone has subscribed, I accept the github PR. I notice...

bug

Access email before it's hashed?

9

comment

Hi, and thanks for the hard work on this project. Is there a way using the staticman API to somehow access the commenters email (if I've configured it to be...

Broken link in README.md

5

comment

https://github.com/paragonie/awesome-appsec#salted-password-hashing-doing-it-right-2014 https://github.com/paragonie/awesome-appsec#salted-password-hashing---doing-it-right-2014 Let me know if you are accepting PRs?

Conferences

5

comment

Have you thought about adding an appsec conferences section?

Officially maintained OWASP ZAP Node API

1

comment

Is there a place for this on awesome-appsec? This API has been unmaintained for several years, I'm the new owner and keeping it maintained now * [The API code](https://github.com/zaproxy/zap-api-nodejs) *...

Upgrade from 3.1.2 to 4 has broken message delivery

5

comment

**Environment:** - **Node.js Version**: 17 - **Redis Server Version**: v=6.2.3 - **Node Redis Version**: 4.1.0 - **Platform**: Dev platform: Release Linux Mint 20.3 Una 64-bit Prod platform: Any Linux This...

Bug

Testing

Iv'e rewritten/ported https://github.com/eloyz/mockevent to https://www.npmjs.com/package/mocksse. Works for node on server and client specifically with this library, feel free to add to your README.

‹
1
2
3
4
5
6
›