Yianna Paris

I know that this was part of current available version, but should we move this risk of having too verbose logs to LCNC-SEC-08? _Originally posted by @mbrg in https://github.com/OWASP/www-project-top-10-low-code-no-code-security-risks/pull/56#discussion_r1182467102_

"Unintended consequences" may be too nebulous, it's coverage is broad and vague. Clarity in the description and impact for what "unintended consequences" means in relation to data leakage is required,...

Consider (re)moving Scenario 2 I know this is unrelated and is not part of the change, but scenario 2 doesn't really fit here, right? _Originally posted by @mbrg in https://github.com/OWASP/www-project-top-10-low-code-no-code-security-risks/pull/56#discussion_r1182454750_

Pin package and lib versions / dependencies

1

Specifying and pinning dependencies helps: - avoid incompatibility issues in future - ensures everyone is using the intended versions for a working codebase Read more: Version specifiers - https://peps.python.org/pep-0440/#version-specifiers `pip...

- include which default options / parameters are being used in the help screen (eg if you were to run `python3 smbscan.py ip`) - suggested scans - list and detail...

Might need to test out workflows first. Github is forcing all actions to use Node20 by default. checkout v3 uses Node16: https://github.com/actions/checkout/releases/tag/v3.0.0 Seems like there is stable release, and you...