A few months ago, I added security headers to all of the pages on my website. The Mozilla Observatory detected the changes then and the score increased to B+. T
I'm trying to hide the framework name Yii from Wappalyzer plugin in Chrome/Firefox. I need to hide the framework name as a part of security audit. I've turned
I have a react js application. I want to add some http headers in the every response that's being returned from the app. Could you please suggest how to impleme
I’m building a React application with a Node backend. In the backend I have an API that just talks to a database and I can deploy the API and the React ap
When creating a Codebuild project it's possible to configure a cache in the Artifacts section to speed up subsequent builds. Docker layer cache is one of the op
I use the following image openjdk:11-jdk as a base image to create an image that just executes a .jar file, but I get the following security warning from Azure
I want to i)stream media content to android device ii)read media content from sdcard of the android device. But the media content should be secured.No other
I am trying to build an application where security and encryption are a high concern. I am using Visual Studio 2022 and VB.NET 6.0 (I searched for 3 days now an
I am creating a Node.JS app that allows users to edit various documents. A sub-directory is created on the server for each user using their user ID for the sub
I have used PFXExportCertStoreEx API to successfully export public and private key of a RSA certificate from Windows key store. Can the same PFXExportCertStoreE
Is there any way to make next.js API routes response data hidden when accessing it through URL? I want to hide the routes because there is some data I don't wan
I have both Apache and Modsecurity working together. I'm trying to limit hit rate by request's header (like "facebookexternalhit"). And then return a friendly "
I am signing an XML document and everything works correctly, but they are rejecting the document because they tell me that the SignedInfo node does not contain
I have a service which uses an AWS Access Key to push stuff to S3. I am going to sunset the service and I have the AWS Access Key and Secret. However, I can't
Is it possible to package a Java app using BouncyCastle as security provider in a single JAR ? PS: I expect to run the JAR without changing java security prope
need pinned resolution feature of yarn, but also want to audit with npm audit? Is there a yarn alternative to npm audit? Or, alternately, will pinning resolutio
I have deployed and run spring saml sample successfully. From SAML Response (IdP -> SP) shown below, can it be identified whether: the SAML response is sig
I want to convert - RSA Public Key modulus: 9699c3c4406464638d2b30dbed44ddee485b5f9a3d7491434049440d34eb1759376a8bac0e37cee5c18df69acfc60d7252634fd
In my Spring Boot application, I have: @Configuration @EnableWebSecurity public class WebSecurityConfig extends WebSecurityConfigurerAdapter { ... @Ove
I'm creating a new file as classpath resource. With the following code, there are critical and high level Path Manipulation issues on Fortify. public class A {