Data

Tools

Indexes

Applications

Experiments

Open Source Science

nxqsj6y

nothing to do

https://github.com/lucianoi620052/nxqsj6y

Science Score: 26.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
    Found .zenodo.json file
  • DOI references
  • Academic publication links
  • Academic email domains
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (3.4%) to scientific vocabulary
Last synced: 7 months ago · JSON representation

Repository

nothing to do

Basic Info
  • Host: GitHub
  • Owner: lucIANOi620052
  • License: mit
  • Language: Jupyter Notebook
  • Default Branch: main
  • Size: 266 MB
Statistics
  • Stars: 0
  • Watchers: 1
  • Forks: 0
  • Open Issues: 5
  • Releases: 0
Created about 1 year ago · Last pushed 7 months ago
Metadata Files
Readme Changelog Contributing Funding License Code of conduct Citation Codeowners Security Governance Roadmap Authors Notice Maintainers

README-ar.md

English | | | Azrbaycan | | | Catal | etina | Deutsch | | Espaol | | Franais | | Indonesia | Italiano | | | | | | | Nederlands | Polski | Portugus (Brasil) | | | Trke | | Ting Vit

# API Security Checklist API --- ## (Authentication) - [ ]        `Basic Auth` ( [JWT](https://jwt.io/), [OAuth](https://oauth.net/)). - [ ]        `` ` ` ` `. . - [ ]        ` ` ` jail feature` . - [ ]        . ### JSON Web Token) JWT) - [ ]        (`JWT Secret`) brute forcing . - [ ]        JWT. (`HS256` `RS256`). - [ ]        (`TTL`, `RTTL`) . - [ ]        JWT, [easily](https://jwt.io/#debugger-io). - [ ]        . JWT . ## - [ ]        (Throttling) DDoS brute-force. - [ ]        HTTPS MITM (Man In The Middle Attack). - [ ]        `HSTS` header SSL SSL Strip. - [ ]        . - [ ]        IP . ## Authorization ### OAuth - [ ]        `redirect_uri` . - [ ]        ( `response_type=token`). - [ ]        `state` CSRF OAuth. - [ ]        scope . ## - [ ]        HTTP method : `GET ()`, `POST ( )`, `PUT/PATCH ( )`, and `DELETE ( )`, `405 Method Not Allowed` method . - [ ]        `content-type` reuest header (Content Negotiation) ( `application/xml`, `application/json`, ) `406 Not Acceptable` . - [ ]        `content-type` posted data ( `application/x-www-form-urlencoded`, `multipart/form-data`, `application/json`, ). - [ ]        ( `XSS`, `SQL-Injection`, `Remote Code Execution`, ). - [ ]        (`credentials`, `Passwords`, `security tokens`, `API keys`) Authorization header. - [ ]        . - [ ]        API caching Rate Limit policies ( ` Quota`, ` Spike Arrest`, ` Concurrent Rate Limit`) ## - [ ]        authentication broken authentication. - [ ]        . `/me/orders` `/user/654321/orders`. - [ ]        auto-increment. `UUID` . - [ ]        XML, entity parsing `XXE` (XML external entity). - [ ]        XML, entity expansion `Billion Laughs/XML bomb` exponential entity expansion. - [ ]        CDN . - [ ]        Workers, Queues HTTP Blocking. - [ ]        DEBUG mode . - [ ]        . ## - [ ]        `X-Content-Type-Options: nosniff` header. - [ ]        `X-Frame-Options: deny` header. - [ ]        `Content-Security-Policy: default-src 'none'` header. - [ ]        headers - `X-Powered-By`, `Server`, `X-AspNet-Version` . - [ ]        `content-type` `application/json` `content-type` `application/json`. - [ ]        `credentials`, `Passwords`, `security tokens`. - [ ]        status code . ( `200 OK`, `400 Bad Request`, `401 Unauthorized`, `405 Method Not Allowed`, ). ## CI & CD - [ ]        / unit/integration tests coverage. - [ ]        . - [ ]        . - [ ]        ( /) . - [ ]        ( ) . - [ ]        rollback. ## Monitoring - [ ] Use centralized logins for all services and components. - [ ] Use agents to monitor all traffic, errors, requests, and responses. - [ ] Use alerts for SMS, Slack, Email, Telegram, Kibana, Cloudwatch, etc. - [ ] Ensure that you aren't logging any sensitive data like credit cards, passwords, PINs, etc. - [ ] Use an IDS and/or IPS system to monitor your API requests and instances. --- ## : - [yosriady/api-development-tools](https://github.com/yosriady/api-development-tools) - RESTful HTTP+JSON APIs. --- # fork pull request. `team@shieldfy.io`.

Owner

  • Login: lucIANOi620052
  • Kind: user

GitHub Events

Total
  • Delete event: 4
  • Issue comment event: 4
  • Push event: 1,249
  • Pull request event: 10
  • Create event: 8
Last Year
  • Delete event: 4
  • Issue comment event: 4
  • Push event: 1,249
  • Pull request event: 10
  • Create event: 8

Issues and Pull Requests

Last synced: 7 months ago

All Time
  • Total issues: 0
  • Total pull requests: 5
  • Average time to close issues: N/A
  • Average time to close pull requests: about 2 months
  • Total issue authors: 0
  • Total pull request authors: 1
  • Average comments per issue: 0
  • Average comments per pull request: 0.8
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 5
Past Year
  • Issues: 0
  • Pull requests: 5
  • Average time to close issues: N/A
  • Average time to close pull requests: about 2 months
  • Issue authors: 0
  • Pull request authors: 1
  • Average comments per issue: 0
  • Average comments per pull request: 0.8
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 5
View more stats
Top Authors
Issue Authors
Pull Request Authors
  • dependabot[bot] (5)
Top Labels
Issue Labels
Pull Request Labels
dependencies (5) github_actions (5)