github.com/mozilla/infosec.mozilla.org issues

Update openid_connect.md

cydave opened this pull request 3 months ago

الترجمة الى لغة غير مدرجة بالقائمة

Assaff1 opened this issue 5 months ago

HSTS is suggested but no warning about making site inaccessible?

slrslr opened this issue 5 months ago

Disallow Encrypt-And-MAC MAC algorithms in modern config

mtausig opened this pull request 5 months ago

Fix origin/site mix-up when describing SameSite

mdashlw opened this pull request 7 months ago

Additional information about SPAs

gdestuynder opened this pull request almost 6 years ago

Remove logout hint

gdestuynder opened this pull request almost 6 years ago

Add Mozilla Code of Conduct

Mozilla-GitHub-Standards opened this pull request almost 6 years ago

CODE_OF_CONDUCT.md file missing

Mozilla-GitHub-Standards opened this issue almost 6 years ago

Fix typo'd character

gene1wood opened this pull request almost 6 years ago

Recommend <meta charset="utf-8"> before CSP <meta http-equiv="">?

Malvoz opened this issue almost 6 years ago

Discussion : Change AWS cross account access grant model

gene1wood opened this issue almost 6 years ago

Fixing a couple of minor typos

rosskusler opened this pull request almost 6 years ago

Lay new likelihood indicator over existing one

gene1wood opened this pull request almost 6 years ago

Move likelihood indicator standard

gene1wood opened this issue almost 6 years ago

Update infosec email address to Bugzilla

gene1wood opened this pull request almost 6 years ago

Fix links on Reference documents section

sasindu555 opened this pull request almost 6 years ago

Fix reference document link

sasindu555 opened this pull request almost 6 years ago

Tracker : AWS Security additions

gene1wood opened this issue almost 6 years ago

Add aws security doc

gene1wood opened this pull request almost 6 years ago

Add likelihood indicator guideline

gene1wood opened this pull request almost 6 years ago

A no of changes are merged from different forks

Rajpratik71 opened this pull request about 6 years ago

Consider having a document about typical logging needs

gdestuynder opened this issue about 6 years ago

Web security: Additions to Cross-Origin Resource Sharing

Malvoz opened this issue about 6 years ago

Add instructions on how to request an RRA

tristanweir opened this pull request about 6 years ago

Proposal to add principle: Validate inputs and outputs

gdestuynder opened this issue about 6 years ago

Principles : Consider splitting out Fraud Detection and Forensics

gene1wood opened this issue about 6 years ago

Fix grammar

gene1wood opened this pull request about 6 years ago

Add lucius to members list

claudijd opened this pull request over 6 years ago

Add guessable/vendor default passwords to strong authentication princ…

claudijd opened this pull request over 6 years ago

Update HTTP to HTTPS

ghost opened this pull request over 6 years ago

updating support note for referrer-policy

chrisdavidmills opened this pull request over 6 years ago

Update openssh sftp-server path

boTux opened this pull request over 6 years ago

Modern OpenSSH server configuration error on Ubuntu 18.04 LTS

boTux opened this issue over 6 years ago

Update web_security.md

slate71 opened this pull request over 6 years ago

Omit testing of Google Analytics cookies? No apparent way to set Secure and/or HttpOnly.

feralreason opened this issue over 6 years ago

Add CORS for developers

april opened this pull request over 6 years ago

Update rationales.md

LunarTwilight opened this pull request over 6 years ago

fixed typo in security_principles.md

subdash opened this pull request over 6 years ago

Broken images

c00kiemon5ter opened this issue over 6 years ago

Remove the CSP Playground

april opened this pull request over 6 years ago

Add References and Additional Reading to Phishing Guidelines

claudijd opened this pull request over 6 years ago

Fix up the url for 'max risk'

jeffbryner opened this pull request over 6 years ago

Add SameSite cookies and syntax highlighting

april opened this pull request over 6 years ago

Fix broken Maximum risk sites link

MitchLillie opened this pull request over 6 years ago

slight change to HPKP max-age description

3lixy opened this pull request over 6 years ago

Add link and password mgr prevention

claudijd opened this pull request over 6 years ago

Fix formatting in README.md

styfle opened this pull request almost 7 years ago

Add using a password manager to the phishing guide

claudijd opened this issue almost 7 years ago

Fix an extremely malicious typo

april opened this pull request almost 7 years ago

Fix typo

jdow opened this pull request almost 7 years ago

Make example non-mozilla specific

claudijd opened this pull request almost 7 years ago

Note about UseLogin being deprecated

gdestuynder opened this pull request almost 7 years ago

Made a number of grammar edits for clarity

tristanweir opened this pull request almost 7 years ago

Add initial draft of phishing guide

claudijd opened this pull request almost 7 years ago

Update rationales.md

janv8000 opened this pull request almost 7 years ago

Fix web security cheatsheet anchor.

Doerge opened this pull request almost 7 years ago

consider having an apache and nginx hardening guide

gdestuynder opened this issue almost 7 years ago

Resolve incorrect anchor links in Web Security guidelines

calebhearth opened this pull request almost 7 years ago

Update index.md

arcrose opened this pull request almost 7 years ago

Fix FAIR link

gdestuynder opened this pull request almost 7 years ago

Clarify the problem with implicit grants

gdestuynder opened this pull request almost 7 years ago

reword principles

gdestuynder opened this issue almost 7 years ago

Added Mozilla django OIDC library

hmitsch opened this pull request almost 7 years ago

Dead link under Assessing Security Risk

packetizeme opened this issue almost 7 years ago

Update rapid_risk_assessment.md

claudijd opened this pull request almost 7 years ago

Minor update to scoring_and_other_levels.md

caggle opened this pull request almost 7 years ago

Minor update to rapid_risk_assessment.md

caggle opened this pull request almost 7 years ago

jquery update > 1.12.4

gdestuynder opened this pull request almost 7 years ago

Missing risk-unknown styling

gdestuynder opened this pull request almost 7 years ago

CSS CSP fixes

gdestuynder opened this pull request almost 7 years ago

csp fixes

gdestuynder opened this pull request almost 7 years ago

layout fixes + name list

gdestuynder opened this pull request almost 7 years ago

Fix issue 25 - anchors id don't go to the correct location due to the

gdestuynder opened this pull request almost 7 years ago

Add css for risk levels and apply

gdestuynder opened this pull request almost 7 years ago

fix link typo

gdestuynder opened this pull request almost 7 years ago

Port all risk related documents and rewrite RRA guide

gdestuynder opened this pull request almost 7 years ago

Update RRA link (currently 404)

gdestuynder opened this pull request almost 7 years ago

Add documentation about our CloudFront + CF + Lambda@Edge setup to get

gdestuynder opened this pull request almost 7 years ago

Add document on likelihood indicators

gene1wood opened this pull request about 7 years ago

the floating header covers anchors when linking to an anchor

justdave opened this issue about 7 years ago

Moved gdoc file to team drive, new address

gdestuynder opened this pull request about 7 years ago

Minor typo fixes

gdestuynder opened this pull request about 7 years ago

Merge principles

gdestuynder opened this pull request about 7 years ago

Port agreed upon principles from Firefox Operations Security

gdestuynder opened this pull request about 7 years ago

Web security: iframe sandbox

gdestuynder opened this issue about 7 years ago

Web security: mention localstorage

gdestuynder opened this issue about 7 years ago

AWS guidelines

gdestuynder opened this pull request about 7 years ago

Use Open Sans as per guidelines for the body of the text

gdestuynder opened this pull request about 7 years ago

Update to include jabba

caggle opened this pull request about 7 years ago

Cag not listed in employees

andrewkrug opened this issue about 7 years ago

Broken link @ L100

Atavic opened this pull request over 7 years ago

UI enhancements

comzeradd opened this pull request over 7 years ago

Verify key management is up to date with ekr&crypto team

gdestuynder opened this issue over 7 years ago

port principles and rationales and levels and any other doc.

gdestuynder opened this issue over 7 years ago

302 older wiki pages to the newer wiki pages

gdestuynder opened this issue over 7 years ago

Redirect infosec.mozilla.org domain

gdestuynder opened this issue over 7 years ago

Finish porting the Mozilla frontierline template/design

gdestuynder opened this issue over 7 years ago

websecurity doc needs more conversion work

gdestuynder opened this issue over 7 years ago

Images !

gdestuynder opened this pull request over 7 years ago

Ecosyste.ms: OpenCollective

github.com/mozilla/infosec.mozilla.org