rust security reviews and cargo-creva project by jzerebecki Project DescriptionLook into things that make security/code reviews of rust code easier and play with cargo-crev. 
|
Explore Crev as collaborative code audita project by pperego Project DescriptionCrev [1] is a collaborative code audit idea. Since it's common that more security engineers can work on the same projects, or there can be a different person auditing a piece of code after some time, there is the need to keep track of the code audit notes in a non-repudiable way. 
|
Rancher Token Revokeran invention by mbolot Project DescriptionThe token revoker aims to scan git repos for exposed rancher tokens. Once a token has been identified, the revoker can (based on configuration) warn/disable/delete the exposed token automatically. 
|
Run sandboxed Firefox with image and sound inside a containeran invention by nguyens Project DescriptionRunning a web browser from your PC can cause all sorts of security or anonymity issues; e-g: content downloaded could be run automatically from your PC, resulting in disk encryption or other unpleasant events. It would be great if we could run most of this in a container so that we have as much of the web browser sandboxed, and limit the PC's exposure to security events. 
|
Sandboxed USB Inspectionan invention by nguyens Project DescriptionUSB devices can be dangerous to read directly from your PC. There are countless stories of PCs being infected (e-g: filesystem encrypted) because a USB device was read without first checking the USB content. But how do you check the device content without having a look at it first?! 
|
Create tool for managing RPM package signing keysan invention by dheidler Project descriptionIIRC there was some article in tech news some year ago that criticized the way RPM keys are handled in the SUSE distribution. 
|
Predefined app security policy template for NeuVectoran idea by feih Project DescriptionIdea is to predefine a set of security policies for popular container applications just for example MySQL, Nginx etc..., with these predefined security policies, users can just download unpack it to use. No need to worry too much about detailed security settings/configurations for this application container. The policies could be any policies that Kubernetes supported and/or NeuVector supported. |
Port NeuVector zero-trust security functions to host/VMan idea by feih Project DescriptionToday, NeuVector only support container environment. It does a lot of security functions and many of those are actually not limited to only protect containers technically. Sometimes, we are seeing requests/asks about providing similar functions to protect servers & VMs. So, it is technically possible. Some of the zero-trust security protections are still pretty unique if we port it over to host/VM side. Welcome if you are interested to help and give it a try! |