the-gabe

icon company Aperture Science icon location lsass.exe icon location "Windows 2000 was an ok kind of OS. Back then there was no ASLR, you just injected your shellcode and off you ran!"

Results 5 issues of the-gabe

Implement support for strict Content-Security-Policy (MapLibre usage)

5 comment

### Describe the problem Hello, currently when using this library with a Content-Security-Policy policy, users are forced to use ```worker-src blob:``` which is inherently unsafe due to it being functionally...

Lack of package-lock.json is effectively removing a key supply chain security feature

In https://github.com/google/docsy/pull/920 it has been discussed that there will be no package-lock.json I would strongly urge for this to be reconsidered, given that a package-lock.json is responsible for distrusting npmjs.org...

CI/infra
security

Inconsistent "Server certificate CA fingerprint does not match the value configured in caFingerprint" (potential race condition?)

8 comment

### 🐛 Bug report We have an application under development using Elasticsearch self hosted, with self signed certificates, with clients connecting using TLS and CA Fingerprints. However, we are running...

Area: Transport
Category: Bug

Implement installation from PEP 751 aka standardized lockfiles

6 comment

### What's the problem this feature will solve? I am interested in PEP 751 so that developers can leverage the official python pip package manager to install and manage dependencies...

type: feature request
PEP implementation
C: lockfile

Licencing question

1 comment

Given that https://github.com/meetecho/simple-whip-server/commit/c8974e1b2fb1b4d2fbc32721197ffa6ae504d24e was done for the server, are there any plans to do the same here for the client? Thanks!