3·
3 days agoTo save a click:
in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation.
The issue is only exploitable when SCIM (System for Cross-domain Identity Management) provisioning is enabled and configured.
So self-hosted Grafana / locally managed users is unaffected.
Why is this better than the scripting environment in other CAD systems? I’m particular, I looked a bit at https://openscad.org/ previously, though didn’t make much headway modeling the thing I wanted.
Why is a language-level approach better than just an API in an existing, popular language?