solid / security-considerations Public

Notifications You must be signed in to change notification settings
Fork 1
Star 2

Code
Issues 14
Pull requests 1
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Security
Insights

Issues: solid/security-considerations

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

14 Open 1 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

Document threats where a Solid-OIDC issuer performs illegal activities

#21 opened Oct 13, 2024 by csarven

Triple injection attacks

#20 opened Oct 11, 2024 by josephguillaume

Accessing fetch vs tokens, secrets

#19 opened Sep 14, 2024 by josephguillaume

Solid Threat Model

#18 opened Jul 2, 2024 by elf-pavlik

Document issues when relying on HTTP Origin header

#17 opened Jun 27, 2024 by elf-pavlik

revisit "Countermeasures" section

#15 opened Jun 19, 2024 by TallTed

Overview of difference between trust levels for different classes of products

#14 opened Jun 19, 2024 by elf-pavlik

Document attacks based on poorly secured discovery mechanism

#12 opened Jun 11, 2024 by elf-pavlik

Fix Consideration subsection per attack section

#11 opened Jun 7, 2024 by csarven

Clarify WebID biblio reference

#10 opened Jun 5, 2024 by elf-pavlik

Document possible phishing attacks during authentication with Solid-OIDC

#6 opened May 23, 2024 by VirginiaBalseiro

Document attacks possible when Solid-OIDC issuer is compromised

#5 opened May 21, 2024 by csarven

Document attacks possible when hosting Soild-OIDC Provider on the same origin as storages

#4 opened May 20, 2024 by elf-pavlik

Document attacks possible when WebID Document is hosted in a Solid Storage

#3 opened May 20, 2024 by elf-pavlik

ProTip! Mix and match filters to narrow down what you’re looking for.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly