Max Neuvians
Max Neuvians
Added stub generator for checks
According to https://blog.google/documents/72/Exposure_Notifications_Service_Additional_Terms.pdf: ``` "Diagnosis Keys may only be retained for 30 days from the time of collection." ``` Based on that information we can set our database retention to...
**Finding**: ALB communications to backend is using HTTP instead of HTTPs **Recommendation**: Enable TLS on backend
**Finding**: Application performs schema updates on start-up which grants the application more privileges than strictly needed **Recommendation**: Deployment should allow relegation of schema changes (migrator functions) to a separate task...
General Information Function: claimKey() Location: covid-shield-server/pkg/server/keyclaim.go Path: /claim-key Logic of claimKey() Check how many attempts the IP has left based on the current number of failure associated with the IP...
We may want to consider padding small key batches with dummy data. This was a `TODO` recommendation from the codebase.
This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of...
It looks like updating a position in Strapi is causing the old position name not to be removed, which then needs to be removed manually.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. #### Changes included in this PR - Changes to the following...
A legitimate attack vector consists of causing our applications to produce large payload responses that generate egress charges. Currently NAT Gateways in ca-central charge $0.05 per GB egressed. 1TB costs...