David Adrian
David Adrian
We should have a meta-test, that enforces that any lint file has an associated test file.
It is not possible to launch a templated dataflow that accepts an option in the form of `ValueProvider`, despite support for Lists within the `ValueProvider` class. I'm not sure if...
## Introduction Browsers may still make insecure HTTP requests to HTTPS-enabled sites, unless site operators have performed a series of elaborate configuration steps culminating in adding their site to the...
See https://github.com/zmap/zgrab/issues/309 I'm not sure how far out of sync we are---I know Chrome's using all the fancy DJB crypto (X25519, ChaCha, etc) and I'm not sure what we support....
We should implement this in two stages: 1. Standalone CAA package, probably as a subpackage of `verifier/`. This would take a cert and a parent, and return CAA status. 2....
We're at about 87% test coverage in the verifier package, the remaining coverage is almost exclusively limited to testing lines that check signatures of certificates with matching subject/issuers. We need...
There's some way to autogenerate documentation from comments. The original Google code already has the comments, so at the very least that would autogenerate. We should generate it, and modify...
zcrypto/tls currently only supports some subset of the Heartbeat protocol. It also allows sending the extension in the ClientHello. This could raise problems if a server wants to send arbitrary...
We use the tests for TLS from Golang in 2014. We should probably be pulling in the TLS tests from Golang 1.8. Additionally, we don't have good tests for our...