-
Notifications
You must be signed in to change notification settings - Fork 278
Issues: opensearch-project/security
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
CVE-2024-31141 (Medium) detected in kafka-clients-3.7.1.jar
Mend: dependency security vulnerability
Security vulnerability detected by WhiteSource
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4934
opened Nov 25, 2024 by
mend-for-github-com
bot
1 task
[Feature Request] Request to Document Behaviour Change in Unauthenticated Request Handling in OpenSearch 2.11.0 or later
enhancement
New feature or request
#4927
opened Nov 20, 2024 by
DebashishSen-Netapp
[BUG] Current version of OpenSAML is incompatible with the Bouncy Castle FIPS library
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4915
opened Nov 18, 2024 by
dancristiancecoi
[BUG] SAML auth is broken after upgrade from 2.11.0 to 2.18.0
bug
Something isn't working
#4911
opened Nov 15, 2024 by
timur-ND
[milestone] Use API Token Flow
enhancement
New feature or request
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4905
opened Nov 13, 2024 by
derek-ho
[milestone] Revoke API Token Flow
enhancement
New feature or request
#4904
opened Nov 13, 2024 by
derek-ho
[milestone] Create API Token flow
enhancement
New feature or request
#4903
opened Nov 13, 2024 by
derek-ho
[milestone] Create a cache that listens in on API tokens index if feature is enabled
enhancement
New feature or request
#4902
opened Nov 13, 2024 by
derek-ho
[milestone] Initialize index for API Tokens if it doesn't exist
enhancement
New feature or request
#4900
opened Nov 13, 2024 by
derek-ho
Authentication with PKCE
enhancement
New feature or request
help wanted
Community contributions are especially encouraged for these issues.
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4897
opened Nov 8, 2024 by
gwintzer
[BUG] integTestRemote gradle task should produce a jacoco report
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
v2.19.0
Issues targeting release v2.19.0
#4869
opened Nov 1, 2024 by
cwperks
[RELEASE] Release version 2.19.0
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
v2.19.0
Issues targeting release v2.19.0
#4859
opened Oct 29, 2024 by
opensearch-trigger-bot
bot
23 tasks
[FEATURE] Create DenyList.yml
enhancement
New feature or request
#4842
opened Oct 24, 2024 by
derek-ho
[BUG] SecurityRestFilter drops the headers from ThreadContext
bug
Something isn't working
v2.18.0
Issues targeting release v2.18.0
#4799
opened Oct 8, 2024 by
kaushalmahi12
[BUG] plugins.security.ssl.transport.enforce_hostname_verification marked as deprecated without documentation
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
v3.0.0
#4780
opened Oct 7, 2024 by
patrykmatys
[BUG] usernames can contain uppercase characters but this breaks own_index type patterns
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4764
opened Oct 1, 2024 by
sebovzeoueb
[BUG/performance] Serialization/Deserialization check for safe classes adds performance overhead
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4760
opened Sep 30, 2024 by
krishna-ggk
[Feature] Add the possibility of disabling encryption on Transport layer
enhancement
New feature or request
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4759
opened Sep 30, 2024 by
spapadop
[BUG] Data Stream Snapshot Restore fails if targeting specific INDICES and it contains Security (even when not imported)
bug
Something isn't working
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
#4751
opened Sep 20, 2024 by
alexmaurizio
[BUG] 403 Forbidden error on /api/saved_objects/_find?fields=title&per_page=10000&type=index-pattern
bug
Something isn't working
#4720
opened Sep 9, 2024 by
sebastienbonami
[RELEASE] Release version 2.18.0
triaged
Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
v2.18.0
Issues targeting release v2.18.0
#4714
opened Sep 7, 2024 by
opensearch-trigger-bot
bot
23 tasks
[Feature] Pluggable and enforced Authorization (ideating)
enhancement
New feature or request
#4702
opened Sep 4, 2024 by
krishna-ggk
[FEATURE] Extend rate limiter concept to beyond just auth failure
enhancement
New feature or request
#4652
opened Aug 16, 2024 by
derek-ho
Previous Next
ProTip!
Adding no:label will show everything without a label.