Hi Team, There appears to be a weird bug here. Making an API call to the prohibited endpoint appended with double/multiple slash is breaking some server-side restrictions imposed upon a partner accoun ...
Continue Reading
February 10, 2023
# CVE-2022-23529 The JSON Web Token (JWT) library versions prio...Read More ...
Continue Reading
February 06, 2023
Leaks of API keys and other secrets. The industry has been abuzz with news about attacks â and the ongoing ripple effect â involving leaked API keys, credentials and other secrets. This adds ...
Continue Reading
February 02, 2023
We're very pleased to announce that Spring Cloud Azure 5.0 is now generally available. This major release includes the following features, improvements, and documentation updates: * Compatible with ...
Continue Reading
February 01, 2023
We're very pleased to announce that Spring Cloud Azure 5.0 is now generally available. This major release includes the following features, improvements, and documentation updates: * Compatible with ...
Continue Reading
January 31, 2023
opensearch is vulnerable to Authentication Bypass. The vulnerability exists because the library does not properly handle white spaces in JWT roles which allow users to potentially claim roles that the ...
Continue Reading
January 27, 2023
We're very pleased to announce that Spring Cloud Azure 5.0 is now generally available. This major release includes the following features, improvements, and documentation updates: * Compatible with ...
Continue Reading
January 26, 2023
### Impact All versions of Argo CD starting with v1.8.2 are vulnerable to an improper authorization bug causing the API to accept certain invalid tokens. OIDC providers include an `aud` (audience) cla ...
Continue Reading
January 26, 2023
Back to Main
