Dave Lago

icon location Boston, MA

Results 4 issues of Dave Lago

Security testing updates

4 comment

**Describe the blog post your would like to write** Blogpost updating on the latest security testing exercises **What is the title of the blog post?** **Who are the authors?** @davidlago...

new blog

[Enhancement] Restrict information available in `ResponseError`

1 comment

The security of the OpenSearch Dashboard could be hardened by restricting the information available in a `ResponseError`. Indeed, it appears that the OpenSearch Dashboards does not perform a filtering in...

enhancement
triaged

[PROPOSAL] Obtain OpenSSF Best Practices Passing Badge

3 comment

## What/Why ### What are you proposing? Let's earn the OpenSSF Best Practices Passing Badge! [![CII Best Practices](https://bestpractices.coreinfrastructure.org/projects/6556/badge)](https://bestpractices.coreinfrastructure.org/projects/6556) >“A CII Best Practices badge, especially a gold badge, shows that an...

[PROPOSAL] Define expectations around staffing of [email protected]

Let's add some language to our `SECURITY.md` file around expectations for how the security issues mailbox will be staffed for the project. Coming from [this comment thread](https://github.com/opensearch-project/.github/pull/90#discussion_r991262547) on the PR...