Inspired by our heritage, our brand is rooted in sports and the culture born from it. Headquartered in Herzogenaurach, Germany, we’re a global leader in the sporting goods industry, employing 62,035 worldwide.
As a locally, skier owned company, Folsom builds custom skis that are designed, engineered, and built specifically for you. With a focus on our experiential-based Custom Fit process, we get to know you as a skier and take those unique attributes into account as we handcraft the perfect pair of skis at our private manufacturing facility in Denver, CO. With the ability to customize any ski from the core to the topsheet graphic, Folsom Skis are backed by a satisfaction guarantee and are promised to outlast any mass-produced product on the market. As a favorite of clientele from around the world, celebrities, and professional skiers alike, Folsom products have received numerous honors and awards from publications such as Freeskier Magazine, Powder Magazine, and Skiing Magazine, just to name a few. To get started with the Folsom Custom Fit experience, fill out a custom fit form or feel free to shop our online store if you already know what you want.
Security & Compliance Standards Overview
No incidents recorded for adidas in 2026.
No incidents recorded for Folsom Custom Skis in 2026.
adidas cyber incidents detection timeline including parent company and subsidiaries
Folsom Custom Skis cyber incidents detection timeline including parent company and subsidiaries
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
