Security Boulevard

When Proxies Become Attack Vectors Through Header Injection

This assumption breaks down because HTTP RFC flexibility allows different servers to interpret the same header field in fundamentally different ways, creating exploitable gaps that attackers are ...
GitHub

[Feature] Improve json parsing and resolving for custom json headers

First off, this is an amazing plugin and it made my week to find something so much better within NeoVim. Thanks for the incredible work! I believe this is a bug, but it might be an intended feature.
GitHub

Privacy concerns on JPT "claims" header

I have two concerns about this: I fear that this makes for too great a risk of leaking information via the header, and it makes composite-value claims inflexible to selectively disclose. I think it ...