Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security patch #899

Open
wants to merge 3 commits into
base: v0.5
Choose a base branch
from
Open

Security patch #899

wants to merge 3 commits into from

Conversation

michaellrowley
Copy link

@michaellrowley michaellrowley commented Aug 29, 2021

Swapped the usage of mt_rand and uniqid for a secure alternative that provides session-ids of an increased length and cryptographic security (32 bytes should be 64 characters in length).
See the huntr.dev reports for more context.

simPod and others added 3 commits January 26, 2021 14:53
Add Github actions so CI runs
Swapped the usage of ``mt_rand`` and ``uniqid`` for a secure alternative that provides session-ids of an increased length and cryptographic security (32 bytes should be 64 characters in length).
See [https://huntr.dev/bounties/b1b59d6f-35ca-40cf-a572-486f901ccb64](this) and [https://huntr.dev/bounties/e9fc7371-2251-4a4e-80d2-f154793f10ce](this).
@cboden cboden added this to the 0.4.4 milestone Dec 10, 2021
@cboden cboden changed the base branch from master to v0.4.4 December 12, 2021 16:43
@cboden cboden changed the base branch from v0.4.4 to v0.5 December 12, 2021 16:43
@cboden cboden modified the milestones: 0.4.4, 0.5 Dec 12, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants