TGTGInsighttelegram intelligenceLIVE / telegram public index
← GitHub Trends

TGINSIGHT SIMILAR POSTS

Find similar content

Source channel @githubtrending · Post #14660 · May 1

#go#containers#cyclonedx#docker#go#golang#hacktoberfest#oci#sbom#spdx#static_analysis#tool Syft is a tool that helps create a list of all the software components used in your applications, known as a Software Bill of Materials (SBOM). This list is important for finding vulnerabilities and ensuring that your software complies with licensing rules. By using Syft, you can better manage your software's security and compliance. It works with many types of software and can be used with other tools like Grype to check for vulnerabilities. This helps keep your software safe and up-to-date. https://github.com/anchore/syft

Results

1 similar post found

Search: #tee

当前筛选 #tee清除筛选
DOFH - DevOps from hell

@dofh_ru · Post #3570 · 02/05/2025, 05:54 PM

Here we go again! SEV-SNP is vulnerable, again. New AMD SEV-SNP vulnerability: https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w Exploit: https://github.com/google/security-research/tree/master/pocs/cpus/entrysign Reports about two recent vulnerabilities in SEV-SNP memory encryption and isolation mechanism, on CPU pipeline, cache and branch prediction level: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3019.html https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3010.html AMD reported that previous approaches to Spectre class attacks will work to fix new vulnerabilities: https://www.amd.com/content/dam/amd/en/documents/epyc-technical-docs/tuning-guides/software-techniques-for-managing-speculation.pdf #cVM #TEE #SEV #SNP #SEV_SNP #AMD