0xdbe.hashnode.devGitHub: signing commit in a workflowCommitting in your workflow can normally be done using git commands or other actions that perform commits for you. However, if your repository requires commit signing, it is difficult to manage securely a GPG keys and set up GitHub Runner to sign you...Apr 4, 2024·2 min read
0xdbe.hashnode.devNext.js: consequence of Next/Image on your CSPThe Next/Image component is a crucial part of the Next.js framework, offering image optimization functionalities. However, utilizing this component can have significant implications for Content Security Policy (CSP). This article is documented as an...Apr 4, 2024·3 min read
0xdbe.hashnode.devNext.js: Crafting a Strict CSPNext.js lacks many built-in security measures. In fact, it doesn't offer predefined configurations for your Content Security Policy (CSP). Consequently, setting up CSP becomes your responsibility. Let's explore how we can implement a CSP. Requirement...Mar 7, 2024·4 min read
0xdbe.hashnode.devNext.js: consequence of AppRouter on your CSPWith the integration of AppRouter, Next.js undergoes significant internal changes in component loading and management. Underneath, AppRouter defaults to employing SSR (Server-Side Rendering) and leverages React Server Components (RSC). However, this ...Mar 7, 2024·3 min read
0xdbe.hashnode.devGitHub: How To Enable Code Scanning With SemgrepSemgrep is an incredible static analysis engine that can be used for finding bugs, detecting vulnerabilities and even for enforcing code standards. Semgrep is a Swiss army knife for static code analysis. This article describes how to automate the dis...Oct 23, 2022·4 min read