Security - Code Search

.github/workflows/scorecard.yml

# This workflow uses actions that are not certified by GitHub. They are provided
# by a third-party and are governed by separate terms of service, privacy
# policy, and support documentation.

name: Scorecard supply-chain security
on:
  # For Branch-Protection check. Only the default branch is supported. See
  # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
  branch_protection_rule:

Created: Fri Dec 26 12:43:10 GMT 2025

- Last Modified: Mon Dec 01 19:32:55 GMT 2025

- 2.9K bytes

- Click Count (0)

github.com/gradle/gradle

architecture/standards/0002-avoid-using-java-serialization.md

Java serialization offers limited control over the serialization process, such as excluding certain fields, customizing naming conventions, and handling complex data structures more gracefully.

- **Security:**
Java serialization poses security risks, especially related to deserialization vulnerabilities.

- **Version Compatibility:**
With Java serialization, even minor changes to a class (like adding a field) can break compatibility.

Created: Wed Dec 31 11:36:14 GMT 2025

- Last Modified: Thu Feb 29 22:32:18 GMT 2024

- 2.3K bytes

- Click Count (0)

github.com/google/guava

android/guava/src/com/google/common/net/HttpHeaders.java

   * The HTTP <a href="http://w3.org/TR/CSP/#content-security-policy-header-field">{@code
   * Content-Security-Policy}</a> header field name.
   *
   * @since 15.0
   */
  public static final String CONTENT_SECURITY_POLICY = "Content-Security-Policy";

  /**
   * The HTTP <a href="http://w3.org/TR/CSP/#content-security-policy-report-only-header-field">
   * {@code Content-Security-Policy-Report-Only}</a> header field name.
   *

Created: Fri Dec 26 12:43:10 GMT 2025

- Last Modified: Thu Mar 27 20:37:16 GMT 2025

- 35.4K bytes

- Click Count (0)

github.com/google/guava

android/guava/src/com/google/common/hash/MessageDigestHashFunction.java

import com.google.errorprone.annotations.Immutable;
import java.io.InvalidObjectException;
import java.io.ObjectInputStream;
import java.io.Serializable;
import java.nio.ByteBuffer;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Arrays;

/**
 * {@link HashFunction} adapter for {@link MessageDigest} instances.
 *
 * @author Kevin Bourrillion
 * @author Dimitris Andreou
 */

Created: Fri Dec 26 12:43:10 GMT 2025

- Last Modified: Thu Feb 13 17:34:21 GMT 2025

- 4.9K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/pt/docs/tutorial/security/index.md

# Segurança { #security }

Há várias formas de lidar segurança, autenticação e autorização.

E isso normalmente é um tópico “difícil” e complexo.

Em muitos frameworks e sistemas, apenas lidar com segurança e autenticação exige muito esforço e código (em muitos casos isso pode ser 50% ou mais de todo o código escrito).

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Wed Dec 17 10:17:03 GMT 2025

- 4.9K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/authentication_error_status_code/tutorial001_an_py39.py

from typing import Annotated

from fastapi import Depends, FastAPI, HTTPException, status
from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer

app = FastAPI()


class HTTPBearer403(HTTPBearer):
    def make_not_authenticated_error(self) -> HTTPException:
        return HTTPException(
            status_code=status.HTTP_403_FORBIDDEN, detail="Not authenticated"
        )

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Mon Nov 24 19:03:06 GMT 2025

- 618 bytes

- Click Count (0)

github.com/google/guava

guava/src/com/google/common/hash/MessageDigestHashFunction.java

import com.google.errorprone.annotations.Immutable;
import java.io.InvalidObjectException;
import java.io.ObjectInputStream;
import java.io.Serializable;
import java.nio.ByteBuffer;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Arrays;

/**
 * {@link HashFunction} adapter for {@link MessageDigest} instances.
 *
 * @author Kevin Bourrillion
 * @author Dimitris Andreou
 */

Created: Fri Dec 26 12:43:10 GMT 2025

- Last Modified: Thu Feb 13 17:34:21 GMT 2025

- 4.9K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial002_an_py39.py

from typing import Annotated, Union

from fastapi import Depends, FastAPI
from fastapi.security import OAuth2PasswordBearer
from pydantic import BaseModel

app = FastAPI()

oauth2_scheme = OAuth2PasswordBearer(tokenUrl="token")


class User(BaseModel):
    username: str
    email: Union[str, None] = None
    full_name: Union[str, None] = None
    disabled: Union[bool, None] = None


def fake_decode_token(token):

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Sat Mar 18 12:29:59 GMT 2023

- 786 bytes

- Click Count (0)

github.com/minio/minio

docs/multi-user/admin/README.md

## Explore Further

- [MinIO Client Complete Guide](https://docs.min.io/community/minio-object-store/reference/minio-mc.html)
- [MinIO STS Quickstart Guide](https://docs.min.io/community/minio-object-store/developers/security-token-service.html)

Created: Sun Dec 28 19:28:13 GMT 2025

- Last Modified: Tue Aug 12 18:20:36 GMT 2025

- 4.7K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/okhttp3.pro

-dontwarn javax.annotation.**

# Animal Sniffer compileOnly dependency to ensure APIs are compatible with older versions of Java.
-dontwarn org.codehaus.mojo.animal_sniffer.*

# OkHttp platform used only on JVM and when Conscrypt and other security providers are available.
# May be used with robolectric or deliberate use of Bouncy Castle on Android
-dontwarn okhttp3.internal.platform.**
-dontwarn org.conscrypt.**

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Sat Jul 19 13:25:00 GMT 2025

- 512 bytes

- Click Count (0)

Search Options