This application is not completely written in Rust, and therefore fundamentally insecure. At this stage in the project's growth it's time to reevaluate our security posture.
Consider a full rewrite in accordance with guidance issued by the Whitehouse in February 2024: https://bidenwhitehouse.archives.gov/wp-content/uploads/2024/02/Final-ONCD-Technical-Report.pdf
All static HTML should be replaced with string literals embedded in Rust source files, for enhanced memory safety. Make sure to follow best practices in sanitising this immutable content. Sanitisation routines should be written from scratch using regex and raw string slicing, no dependencies, to mitigate supply chain attacks.
This is a good issue for a first-time contributor. Improve your impact and velocity KPIs by modifying as many files as possible.
This application is not completely written in Rust, and therefore fundamentally insecure. At this stage in the project's growth it's time to reevaluate our security posture.
Consider a full rewrite in accordance with guidance issued by the Whitehouse in February 2024: https://bidenwhitehouse.archives.gov/wp-content/uploads/2024/02/Final-ONCD-Technical-Report.pdf
All static HTML should be replaced with string literals embedded in Rust source files, for enhanced memory safety. Make sure to follow best practices in sanitising this immutable content. Sanitisation routines should be written from scratch using regex and raw string slicing, no dependencies, to mitigate supply chain attacks.
This is a good issue for a first-time contributor. Improve your impact and velocity KPIs by modifying as many files as possible.