Stackle
Stackle copied to clipboard
scorelab
Stackle is an web communication portal aimed at providing Open Source organizations a platform to have discussions on their github projects and their issues. It provides Github intergration which allo...
### Absence of Anti-CSRF Tokens ## Changes proposed in the pull request *Use a vetted library or framework that does not allow this weakness to occur or provides constructs that...
### Content-Security-Policy : Wildcard Directive ## Changes proposed in the pull request * Ensure that web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header....
### Fixes CWE-16, CWE-601 & WASC-15 vulnerabilities on Stackle-app ## Changes proposed in the pull request In the HTTP response header of the Stackle application, set X-Frame-Options parameter as below....
### Fixes CWE-264, CWE-269, CWE-269 & WASC-14 vulnerabilities on Stackle-app ## Changes proposed in the pull request Configure the "Access-Control-Allow-Origin" HTTP response header to a more restrictive set of domains,...
## Type of issue: - [ ] Bug / Error - [x] Idea / Feature - [x] Improvement detail ## Short description on the issue Currently, the URL fields in...
## Before you describe your issue, idea or feature, please consider using this issue template. ## Type of issue: - [ ] Bug / Error - [ ] Idea /...
### Fixes CWE 16 and CWE 264 in stackle-api ## Changes proposed in the pull request Stackle-master\stackle_api\server.js const helmet = require('helmet') app.use(helmet.frameguard()) app.use(function (err, req, res, next) { res.header("Access-Control-Allow-Origin", "http://localhost:8080");...
Description 1. are able to was changed to can. 2. login was changed to log in. 3. setup was changed to set up. 4. The spellings of latest and edition...
## Type of issue: - [x] Bug / Error - [ ] Idea / Feature - [x] Improvement detail ## Short description on the issue In the readme.md file architecture...
## Changes proposed in the pull request * Added missing logo icon in the repository ## Impact **Previously it was displayed as below.**  **Below image shows readme.md file after...