web-application-security-testing-tool

web-application-security-testing-tool A Python-based Web Appli...

Zero Chaos: Scaling Detection Engineering at the Speed of Software, with Detection As Code

Every engineering team in your organization ships code through a pipeline. They branch, test, review, and deploy. If something breaks, they roll back. If someone asks "what changed?", the answer is in the commit history. This isn't heroic discipline to process; it's just how software gets built...

Exploit for Embedded Malicious Code in Tukaani Xz

Security Review: CVE-2024-3094 XZ Utils Backdoor Автор:...

AutoBaxBuilder: Bootstrapping Code Security Benchmarking

As LLMs see wide adoption in software engineering, the reliable assessment of the correctness and security of LLM-generated code is crucial. Notably, prior work has demonstrated that security is often overlooked, exposing that LLMs are prone to generating code with security vulnerabilities. These...

Project_4

Project4 AutoWebVulnScanner is a Python-based web vulner...

CLSA-2025-1759497739 perl-HTTP-Tiny: Fix of CVE-2023-31486

CVE-2023-31486: fix insecure default TLS configuration - Enable automated tests during build...

MaraDNS_1

This is a repository for MaraDNS, a small open-source DNS server. The repository contains various files and scripts for building and testing MaraDNS, including a Dockerfile for creating a Docker image to test installing MaraDNS on a fresh Ubuntu 22.04 virtual machine. The repository includes a...

Malicious code in checkout-automated-tests (npm)

The package checkout-automated-tests was found to contain malicious code...

MAL-2025-16882 Malicious code in checkout-automated-tests (npm)

The package checkout-automated-tests was found to contain malicious code...

MAL-2022-1179 Malicious code in automated-end-to-end-tests (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b0acf6b52deb4d28a2cf909d1fe2cd2ac4947f0e4bd58cab3fe5a5f7498cbad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

How to Implement Secure and Compliant IaC

Success lies in security True separation of developer and security teams is becoming a thing of the past. Today’s cloud environments enable deployments at previously unheard-of speed and scale; there simply isn’t time to build infrastructure, then code, then hand it all off for security...

Fedora: Security Advisory for os-autoinst (FEDORA-2021-186bca5b58)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 33 Update: os-autoinst-4.6-35.20210326git24ec8f9.fc33

The OS-autoinst project aims at providing a means to run fully automated tests. Especially to run tests of basic and low-level operating system components such as bootloader, kernel, installer and upgrade, which can not easily and safely be tested with other automated testing frameworks. However,...

Sitadel

This repository is an update for WAScan, making it compatible with Python versions 3.4 and above. It allows for more flexibility in writing new modules and implementing new features, such as frontend framework detection, content delivery network detection, defining risk levels for scans, and a...

Fedora Update for os-autoinst FEDORA-2019-c404576415

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...