Skip to content

Commit

Permalink
semgrep rules: November 2024 Update
Browse files Browse the repository at this point in the history 
```
@ nonfree.audit (+13, -1)
+ generic.secrets.security.detected-google-oauth-access-token.detected-google-oauth-access-token
+ generic.secrets.security.detected-heroku-api-key.detected-heroku-api-key
+ generic.secrets.security.detected-hockeyapp.detected-hockeyapp
+ generic.secrets.security.detected-mailchimp-api-key.detected-mailchimp-api-key
+ generic.secrets.security.detected-mailgun-api-key.detected-mailgun-api-key
+ generic.secrets.security.detected-outlook-team.detected-outlook-team
+ generic.secrets.security.detected-paypal-braintree-access-token.detected-paypal-braintree-access-token
+ generic.secrets.security.detected-pgp-private-key-block.detected-pgp-private-key-block
+ generic.secrets.security.detected-npm-registry-auth-token.detected-npm-registry-auth-token
+ generic.secrets.security.detected-github-token.detected-github-token
+ generic.secrets.security.detected-jwt-token.detected-jwt-token
+ generic.secrets.security.detected-kolide-api-key.detected-kolide-api-key
+ generic.secrets.security.detected-google-gcm-service-account.detected-google-gcm-service-account
- javascript.express.security.audit.xss.ejs.var-in-href.var-in-href
@ nonfree.others (+0, -0)
@ nonfree.security_noaudit_novuln (+0, -5)
- go.lang.security.audit.crypto.missing-ssl-minversion.missing-ssl-minversion
- javascript.intercom.security.audit.intercom-settings-user-identifier-without-user-hash.intercom-settings-user-identifier-without-user-hash
- python.django.security.django-no-csrf-token.django-no-csrf-token
- python.django.security.django-using-request-post-after-is-valid.django-using-request-post-after-is-valid
- terraform.aws.security.aws-provisioner-exec.aws-provisioner-exec
@ nonfree.vulns (+0, -0)
@ oss.audit (+421, -0)
+ gitlab.eslint.detect-object-injection
+ gitlab.eslint.detect-non-literal-regexp
+ gitlab.eslint.detect-non-literal-fs-filename
+ gitlab.eslint.detect-buffer-noassert
+ gitlab.eslint.detect-new-buffer
+ gitlab.eslint.detect-pseudoRandomBytes
+ gitlab.eslint.detect-non-literal-require
+ gitlab.eslint.detect-child-process
+ gitlab.eslint.detect-eval-with-expression
+ gitlab.eslint.detect-disable-mustache-escape
+ gitlab.eslint.react-dangerouslysetinnerhtml
+ gitlab.eslint.detect-possible-timing-attacks
+ gitlab.find_sec_bugs_kotlin.HTTP_RESPONSE_SPLITTING-1
+ gitlab.find_sec_bugs_kotlin.HRS_REQUEST_PARAMETER_TO_HTTP_HEADER-1
+ gitlab.find_sec_bugs_kotlin.WEAK_HOSTNAME_VERIFIER-1.WEAK_TRUST_MANAGER-1
+ gitlab.find_sec_bugs_kotlin.MODIFICATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs_kotlin.HTTPONLY_COOKIE-1
+ gitlab.find_sec_bugs_kotlin.BLOWFISH_KEY_SIZE-1
+ gitlab.find_sec_bugs_kotlin.ECB_MODE-1
+ gitlab.find_sec_bugs_kotlin.CIPHER_INTEGRITY-1
+ gitlab.find_sec_bugs_kotlin.NULL_CIPHER-1
+ gitlab.find_sec_bugs_kotlin.DMI_EMPTY_DB_PASSWORD-1.HARD_CODE_PASSWORD-2
+ gitlab.find_sec_bugs_kotlin.WEAK_FILENAMEUTILS-1
+ gitlab.find_sec_bugs_kotlin.XXE_SAXPARSER-1
+ gitlab.find_sec_bugs_kotlin.DES_USAGE-1
+ gitlab.find_sec_bugs_kotlin.NORMALIZATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs_kotlin.SCRIPT_ENGINE_INJECTION-1.SPEL_INJECTION-1.EL_INJECTION-2.SEAM_LOG_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.HAZELCAST_SYMMETRIC_ENCRYPTION-1
+ gitlab.find_sec_bugs_kotlin.HARD_CODE_PASSWORD-1
+ gitlab.find_sec_bugs_kotlin.XXE_XMLREADER-1
+ gitlab.find_sec_bugs_kotlin.INSECURE_SMTP_SSL-1
+ gitlab.find_sec_bugs_kotlin.SAML_IGNORE_COMMENTS-1
+ gitlab.find_sec_bugs.WEAK_HOSTNAME_VERIFIER
+ gitlab.find_sec_bugs_kotlin.URLCONNECTION_SSRF_FD-1
+ gitlab.find_sec_bugs_kotlin.REQUESTDISPATCHER_FILE_DISCLOSURE-1.STRUTS_FILE_DISCLOSURE-1.SPRING_FILE_DISCLOSURE-1
+ gitlab.find_sec_bugs_kotlin.CUSTOM_MESSAGE_DIGEST-1
+ gitlab.find_sec_bugs.REQUESTDISPATCHER_FILE_DISCLOSURE-1
+ gitlab.find_sec_bugs_kotlin.RSA_NO_PADDING-1
+ gitlab.find_sec_bugs_kotlin.OGNL_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.XPATH_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.INSECURE_COOKIE-1
+ gitlab.find_sec_bugs_kotlin.PT_ABSOLUTE_PATH_TRAVERSAL-1
+ gitlab.find_sec_bugs.WEAK_TRUST_MANAGER
+ gitlab.find_sec_bugs_kotlin.DANGEROUS_PERMISSION_COMBINATION-1
+ gitlab.find_sec_bugs_kotlin.RSA_KEY_SIZE-1
+ gitlab.find_sec_bugs_kotlin.WICKET_XSS1-1
+ gitlab.find_sec_bugs_kotlin.PADDING_ORACLE-1
+ gitlab.find_sec_bugs_kotlin.SMTP_HEADER_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.TEMPLATE_INJECTION_PEBBLE-1.TEMPLATE_INJECTION_FREEMARKER-1.TEMPLATE_INJECTION_VELOCITY-1
+ gitlab.find_sec_bugs_kotlin.LDAP_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.BAD_HEXA_CONVERSION-1
+ gitlab.find_sec_bugs_kotlin.SSL_CONTEXT-2
+ gitlab.find_sec_bugs_kotlin.UNVALIDATED_REDIRECT-1.URL_REWRITING-1
+ gitlab.find_sec_bugs_kotlin.EL_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.SQL_INJECTION_SPRING_JDBC-1.SQL_INJECTION_JPA-1.SQL_INJECTION_JDO-1.SQL_INJECTION_JDBC-1.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE-1.SQL_INJECTION-1.SQL_INJECTION_HIBERNATE-1.SQL_INJECTION_VERTX-1.SQL_PREPARED_STATEMENT_GENERATED_FROM_NONCONSTANT_STRING-1
+ gitlab.find_sec_bugs.SPRING_FILE_DISCLOSURE-1
+ gitlab.find_sec_bugs_kotlin.WEAK_MESSAGE_DIGEST_MD5-1.WEAK_MESSAGE_DIGEST_SHA1-1
+ gitlab.find_sec_bugs_kotlin.HTTP_PARAMETER_POLLUTION-1
+ gitlab.find_sec_bugs_kotlin.MALICIOUS_XSLT-1
+ gitlab.find_sec_bugs_kotlin.FORMAT_STRING_MANIPULATION-1
+ gitlab.find_sec_bugs_kotlin.PERMISSIVE_CORS-2
+ gitlab.find_sec_bugs_kotlin.OVERLY_PERMISSIVE_FILE_PERMISSION-1
+ gitlab.find_sec_bugs_kotlin.SSL_CONTEXT-1
+ gitlab.find_sec_bugs_kotlin.LDAP_ANONYMOUS-1
+ gitlab.find_sec_bugs_kotlin.TDES_USAGE-1
+ gitlab.find_sec_bugs_kotlin.XXE_XMLSTREAMREADER-1
+ gitlab.find_sec_bugs_kotlin.XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER-1
+ gitlab.find_sec_bugs_kotlin.XML_DECODER-1
+ gitlab.find_sec_bugs_kotlin.EXTERNAL_CONFIG_CONTROL-1
+ gitlab.find_sec_bugs_kotlin.SPRING_CSRF_PROTECTION_DISABLED-1
+ gitlab.find_sec_bugs_kotlin.COMMAND_INJECTION-1
+ gitlab.find_sec_bugs_kotlin.FILE_UPLOAD_FILENAME-1
+ gitlab.find_sec_bugs_kotlin.DMI_CONSTANT_DB_PASSWORD-1.HARD_CODE_PASSWORD-3
+ gitlab.find_sec_bugs.SQL_INJECTION_SPRING_JDBC-1.SQL_INJECTION_JPA-1.SQL_INJECTION_JDO-1.SQL_INJECTION_JDBC-1.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE-1
+ gitlab.find_sec_bugs.HARD_CODE_KEY-1
+ gitlab.find_sec_bugs.HARD_CODE_KEY-4
+ gitlab.find_sec_bugs.HARD_CODE_KEY-2
+ gitlab.find_sec_bugs.HARD_CODE_KEY-3
+ gitlab.find_sec_bugs_scala.DES_USAGE-1
+ gitlab.find_sec_bugs.FORMAT_STRING_MANIPULATION-1
+ gitlab.find_sec_bugs.URLCONNECTION_SSRF_FD-1
+ gitlab.find_sec_bugs.STRUTS_FORM_VALIDATION-1
+ gitlab.find_sec_bugs_scala.LDAP_INJECTION-1
+ gitlab.find_sec_bugs_scala.CUSTOM_MESSAGE_DIGEST-1
+ gitlab.find_sec_bugs.COOKIE_USAGE-1
+ gitlab.find_sec_bugs.IMPROPER_UNICODE-1
+ gitlab.find_sec_bugs.MODIFICATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs.CUSTOM_INJECTION-2
+ gitlab.find_sec_bugs.XML_DECODER-1
+ gitlab.find_sec_bugs_scala.OGNL_INJECTION-1
+ gitlab.find_sec_bugs_scala.PADDING_ORACLE-1
+ gitlab.find_sec_bugs.HTTP_RESPONSE_SPLITTING-1
+ gitlab.find_sec_bugs_scala.XXE_XPATH-1
+ gitlab.find_sec_bugs_scala.INFORMATION_EXPOSURE_THROUGH_AN_ERROR_MESSAGE-1
+ gitlab.find_sec_bugs.INSECURE_COOKIE-1
+ gitlab.find_sec_bugs.NORMALIZATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs.PT_RELATIVE_PATH_TRAVERSAL-1
+ gitlab.find_sec_bugs.AWS_QUERY_INJECTION-1
+ gitlab.find_sec_bugs_scala.PATH_TRAVERSAL_IN-1.SCALA_PATH_TRAVERSAL_IN-1
+ gitlab.find_sec_bugs_scala.RSA_KEY_SIZE-1
+ gitlab.find_sec_bugs.HRS_REQUEST_PARAMETER_TO_COOKIE-1
+ gitlab.find_sec_bugs.INFORMATION_EXPOSURE_THROUGH_AN_ERROR_MESSAGE-1
+ gitlab.find_sec_bugs_scala.SCALA_SENSITIVE_DATA_EXPOSURE-1
+ gitlab.find_sec_bugs.TEMPLATE_INJECTION_PEBBLE-1.TEMPLATE_INJECTION_FREEMARKER-1.TEMPLATE_INJECTION_VELOCITY-1
+ gitlab.find_sec_bugs.SQL_INJECTION_SPRING_JDBC-1.SQL_INJECTION_JPA-1.SQL_INJECTION_JDO-1.SQL_INJECTION_JDBC-1.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE-1.SQL_INJECTION-1.SQL_INJECTION_HIBERNATE-1.SQL_INJECTION_VERTX-1.SQL_PREPARED_STATEMENT_GENERATED_FROM_NONCONSTANT_STRING-1
+ gitlab.find_sec_bugs.BEAN_PROPERTY_INJECTION-1
+ gitlab.find_sec_bugs_scala.PATH_TRAVERSAL_OUT-1
+ gitlab.find_sec_bugs_scala.DEFAULT_HTTP_CLIENT-1
+ gitlab.find_sec_bugs.HRS_REQUEST_PARAMETER_TO_HTTP_HEADER-1
+ gitlab.find_sec_bugs.RPC_ENABLED_EXTENSIONS-1
+ gitlab.find_sec_bugs_scala.RPC_ENABLED_EXTENSIONS-1
+ gitlab.find_sec_bugs.XSS_REQUEST_WRAPPER-1
+ gitlab.find_sec_bugs.LDAP_ANONYMOUS-1
+ gitlab.find_sec_bugs.CRLF_INJECTION_LOGS-1
+ gitlab.find_sec_bugs_scala.PT_ABSOLUTE_PATH_TRAVERSAL-1
+ gitlab.find_sec_bugs_scala.HAZELCAST_SYMMETRIC_ENCRYPTION-1
+ gitlab.find_sec_bugs.TRUST_BOUNDARY_VIOLATION-1
+ gitlab.find_sec_bugs_scala.SAML_IGNORE_COMMENTS-1
+ gitlab.find_sec_bugs.SAML_IGNORE_COMMENTS-1
+ gitlab.find_sec_bugs.COMMAND_INJECTION-1
+ gitlab.find_sec_bugs_scala.PT_RELATIVE_PATH_TRAVERSAL-1
+ gitlab.find_sec_bugs_scala.NULL_CIPHER-1
+ gitlab.find_sec_bugs_scala.XML_DECODER-1
+ gitlab.find_sec_bugs.XSS_REQUEST_PARAMETER_TO_SEND_ERROR-1
+ gitlab.find_sec_bugs.CUSTOM_INJECTION-1
+ gitlab.find_sec_bugs.MALICIOUS_XSLT-1
+ gitlab.find_sec_bugs_scala.SQL_INJECTION_SPRING_JDBC-1.SQL_INJECTION_JPA-1.SQL_INJECTION_JDO-1.SQL_INJECTION_JDBC-1.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE-1.SCALA_SQL_INJECTION_SLICK-1
+ gitlab.find_sec_bugs.XSS_SERVLET-1
+ gitlab.find_sec_bugs.XPATH_INJECTION-1
+ gitlab.find_sec_bugs.EL_INJECTION-1
+ gitlab.find_sec_bugs_scala.LDAP_ANONYMOUS-1
+ gitlab.find_sec_bugs_scala.RSA_NO_PADDING-1
+ gitlab.find_sec_bugs.RSA_NO_PADDING-1
+ gitlab.find_sec_bugs.BLOWFISH_KEY_SIZE-1
+ gitlab.find_sec_bugs_scala.URLCONNECTION_SSRF_FD-1
+ gitlab.find_sec_bugs.WICKET_XSS1-1
+ gitlab.find_sec_bugs.XXE_XPATH-1.XXE_DOCUMENT-1
+ gitlab.find_sec_bugs.REQUESTDISPATCHER_FILE_DISCLOSURE-1.STRUTS_FILE_DISCLOSURE-1.SPRING_FILE_DISCLOSURE-1
+ gitlab.find_sec_bugs_scala.LDAP_ENTRY_POISONING-1
+ gitlab.find_sec_bugs_scala.WEAK_MESSAGE_DIGEST_MD5-1.WEAK_MESSAGE_DIGEST_SHA1-1
+ gitlab.find_sec_bugs.SSL_CONTEXT-1
+ gitlab.find_sec_bugs.XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER-1
+ gitlab.find_sec_bugs_scala.FILE_UPLOAD_FILENAME-1
+ gitlab.find_sec_bugs.HTTP_PARAMETER_POLLUTION-1
+ gitlab.find_sec_bugs_scala.DMI_CONSTANT_DB_PASSWORD-1.HARD_CODE_PASSWORD-3
+ gitlab.find_sec_bugs_scala.SSL_CONTEXT-1
+ gitlab.find_sec_bugs.DES_USAGE-1
+ gitlab.find_sec_bugs.SSL_CONTEXT-2
+ gitlab.find_sec_bugs.COOKIE_PERSISTENT-1
+ gitlab.find_sec_bugs.XSS_SERVLET-2.XSS_SERVLET_PARAMETER-1
+ gitlab.find_sec_bugs.LDAP_INJECTION-1
+ gitlab.find_sec_bugs_scala.DMI_EMPTY_DB_PASSWORD-1.HARD_CODE_PASSWORD-2
+ gitlab.find_sec_bugs_scala.STRUTS_FORM_VALIDATION-1
+ gitlab.find_sec_bugs.TDES_USAGE-1
+ gitlab.find_sec_bugs.SPRING_CSRF_PROTECTION_DISABLED-1
+ gitlab.find_sec_bugs_scala.HTTPONLY_COOKIE-1
+ gitlab.find_sec_bugs.XXE_SAXPARSER-1
+ gitlab.find_sec_bugs_scala.EXTERNAL_CONFIG_CONTROL-1
+ gitlab.find_sec_bugs.DMI_EMPTY_DB_PASSWORD-1.HARD_CODE_PASSWORD-2
+ gitlab.find_sec_bugs_scala.HARD_CODE_PASSWORD-1
+ gitlab.find_sec_bugs_scala.XXE_XMLSTREAMREADER-1
+ gitlab.find_sec_bugs_scala.SERVLET_PARAMETER-1.SERVLET_CONTENT_TYPE-1.SERVLET_SERVER_NAME-1.SERVLET_SESSION_ID-1.SERVLET_QUERY_STRING-1.SERVLET_HEADER-1.SERVLET_HEADER_REFERER-1.SERVLET_HEADER_USER_AGENT-1
+ gitlab.find_sec_bugs.ECB_MODE-1
+ gitlab.find_sec_bugs.PERMISSIVE_CORS-1
+ gitlab.find_sec_bugs_scala.WICKET_XSS1-1
+ gitlab.find_sec_bugs.XXE_DTD_TRANSFORM_FACTORY-1.XXE_XSLT_TRANSFORM_FACTORY-1
+ gitlab.find_sec_bugs.OGNL_INJECTION-1
+ gitlab.find_sec_bugs_scala.DANGEROUS_PERMISSION_COMBINATION-1
+ gitlab.find_sec_bugs_scala.JAXRS_ENDPOINT-1
+ gitlab.find_sec_bugs.CIPHER_INTEGRITY-1
+ gitlab.find_sec_bugs.PERMISSIVE_CORS-2
+ gitlab.find_sec_bugs.XXE_XMLREADER-1
+ gitlab.find_sec_bugs.PATH_TRAVERSAL_IN-1
+ gitlab.find_sec_bugs_scala.OVERLY_PERMISSIVE_FILE_PERMISSION-1
+ gitlab.find_sec_bugs_scala.JAXWS_ENDPOINT-1
+ gitlab.find_sec_bugs.PADDING_ORACLE-1
+ gitlab.find_sec_bugs.XXE_XMLSTREAMREADER-1
+ gitlab.find_sec_bugs.PT_ABSOLUTE_PATH_TRAVERSAL-1
+ gitlab.find_sec_bugs_scala.OVERLY_PERMISSIVE_FILE_PERMISSION-2
+ gitlab.find_sec_bugs_scala.UNENCRYPTED_SOCKET-1.UNENCRYPTED_SERVER_SOCKET-1
+ gitlab.find_sec_bugs.CUSTOM_MESSAGE_DIGEST-1
+ gitlab.find_sec_bugs_scala.MALICIOUS_XSLT-1
+ gitlab.find_sec_bugs_scala.INSECURE_COOKIE-1
+ gitlab.find_sec_bugs.HARD_CODE_PASSWORD-1
+ gitlab.find_sec_bugs_scala.PREDICTABLE_RANDOM-1.PREDICTABLE_RANDOM_SCALA-1
+ gitlab.find_sec_bugs_scala.AWS_QUERY_INJECTION-1
+ gitlab.find_sec_bugs.WEAK_MESSAGE_DIGEST_MD5-1.WEAK_MESSAGE_DIGEST_SHA1-1
+ gitlab.find_sec_bugs.DEFAULT_HTTP_CLIENT-1
+ gitlab.find_sec_bugs_scala.XPATH_INJECTION-1
+ gitlab.find_sec_bugs_scala.COOKIE_USAGE-1
+ gitlab.find_sec_bugs.DANGEROUS_PERMISSION_COMBINATION-1
+ gitlab.find_sec_bugs_scala.SCRIPT_ENGINE_INJECTION-1.SPEL_INJECTION-1.EL_INJECTION-2.SEAM_LOG_INJECTION-1
+ gitlab.find_sec_bugs_scala.BEAN_PROPERTY_INJECTION-1
+ gitlab.find_sec_bugs.HAZELCAST_SYMMETRIC_ENCRYPTION-1
+ gitlab.find_sec_bugs_scala.SCALA_XSS_MVC_API-1
+ gitlab.find_sec_bugs_scala.COOKIE_PERSISTENT-1
+ gitlab.find_sec_bugs.LDAP_ENTRY_POISONING-1
+ gitlab.find_sec_bugs_scala.SCRIPT_ENGINE_INJECTION-2
+ gitlab.find_sec_bugs_scala.CRLF_INJECTION_LOGS-1
+ gitlab.find_sec_bugs.UNENCRYPTED_SOCKET-1.UNENCRYPTED_SERVER_SOCKET-1
+ gitlab.find_sec_bugs.RSA_KEY_SIZE-1
+ gitlab.find_sec_bugs_scala.XSS_REQUEST_WRAPPER-1
+ gitlab.find_sec_bugs_scala.HTTP_RESPONSE_SPLITTING-1
+ gitlab.find_sec_bugs.OVERLY_PERMISSIVE_FILE_PERMISSION-1
+ gitlab.find_sec_bugs_scala.INSECURE_SMTP_SSL-1
+ gitlab.find_sec_bugs_scala.COMMAND_INJECTION-1.SCALA_COMMAND_INJECTION-1
+ gitlab.find_sec_bugs.NULL_CIPHER-1
+ gitlab.find_sec_bugs_scala.XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER-1
+ gitlab.find_sec_bugs_scala.BLOWFISH_KEY_SIZE-1
+ gitlab.find_sec_bugs.DMI_CONSTANT_DB_PASSWORD-1.HARD_CODE_PASSWORD-3
+ gitlab.find_sec_bugs_scala.SMTP_HEADER_INJECTION-1
+ gitlab.find_sec_bugs_scala.CUSTOM_INJECTION-1
+ gitlab.find_sec_bugs.SERVLET_PARAMETER-1.SERVLET_CONTENT_TYPE-1.SERVLET_SERVER_NAME-1.SERVLET_SESSION_ID-1.SERVLET_QUERY_STRING-1.SERVLET_HEADER-1.SERVLET_HEADER_REFERER-1.SERVLET_HEADER_USER_AGENT-1
+ gitlab.find_sec_bugs_scala.XSS_SERVLET-1
+ gitlab.find_sec_bugs_scala.HRS_REQUEST_PARAMETER_TO_COOKIE-1
+ gitlab.find_sec_bugs.OVERLY_PERMISSIVE_FILE_PERMISSION-2
+ gitlab.find_sec_bugs_scala.SCALA_PLAY_SSRF-1
+ gitlab.find_sec_bugs_scala.MODIFICATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs_scala.HRS_REQUEST_PARAMETER_TO_HTTP_HEADER-1
+ gitlab.find_sec_bugs.EXTERNAL_CONFIG_CONTROL-1
+ gitlab.find_sec_bugs_scala.BAD_HEXA_CONVERSION-1
+ gitlab.find_sec_bugs_scala.UNVALIDATED_REDIRECT-1.URL_REWRITING-1
+ gitlab.find_sec_bugs_scala.XXE_DOCUMENT-1
+ gitlab.find_sec_bugs_scala.TRUST_BOUNDARY_VIOLATION-1
+ gitlab.find_sec_bugs.PREDICTABLE_RANDOM-1
+ gitlab.find_sec_bugs_scala.FORMAT_STRING_MANIPULATION-1
+ gitlab.find_sec_bugs_scala.WEAK_HOSTNAME_VERIFIER-1.WEAK_TRUST_MANAGER-1
+ gitlab.find_sec_bugs.JAXRS_ENDPOINT-1
+ gitlab.find_sec_bugs_scala.XXE_SAXPARSER-1
+ gitlab.find_sec_bugs_scala.PERMISSIVE_CORS-1
+ gitlab.find_sec_bugs.SCRIPT_ENGINE_INJECTION-1.SPEL_INJECTION-1.EL_INJECTION-2.SEAM_LOG_INJECTION-1
+ gitlab.find_sec_bugs_scala.IMPROPER_UNICODE-1
+ gitlab.find_sec_bugs_scala.WEAK_FILENAMEUTILS-1
+ gitlab.find_sec_bugs.JAXWS_ENDPOINT-1
+ gitlab.find_sec_bugs_scala.PERMISSIVE_CORS-2
+ gitlab.find_sec_bugs.SCRIPT_ENGINE_INJECTION-2
+ gitlab.find_sec_bugs_scala.CUSTOM_INJECTION-2
+ gitlab.find_sec_bugs.UNVALIDATED_REDIRECT-1.URL_REWRITING-1
+ gitlab.find_sec_bugs_scala.TDES_USAGE-1
+ gitlab.find_sec_bugs.INSECURE_SMTP_SSL-1
+ gitlab.find_sec_bugs_scala.NORMALIZATION_AFTER_VALIDATION-1
+ gitlab.find_sec_bugs_scala.EL_INJECTION-1
+ gitlab.find_sec_bugs.FILE_UPLOAD_FILENAME-1
+ gitlab.find_sec_bugs_scala.XXE_DTD_TRANSFORM_FACTORY-1.XXE_XSLT_TRANSFORM_FACTORY-1
+ gitlab.find_sec_bugs_scala.ECB_MODE-1
+ gitlab.find_sec_bugs.SMTP_HEADER_INJECTION-1
+ gitlab.find_sec_bugs_scala.TEMPLATE_INJECTION_PEBBLE-1.TEMPLATE_INJECTION_FREEMARKER-1.TEMPLATE_INJECTION_VELOCITY-1
+ gitlab.find_sec_bugs_scala.REQUESTDISPATCHER_FILE_DISCLOSURE-1.STRUTS_FILE_DISCLOSURE-1.SPRING_FILE_DISCLOSURE-1
+ gitlab.find_sec_bugs.WEAK_HOSTNAME_VERIFIER-1.WEAK_TRUST_MANAGER-1
+ gitlab.find_sec_bugs.HTTPONLY_COOKIE-1
+ gitlab.find_sec_bugs_scala.XXE_XMLREADER-1
+ gitlab.find_sec_bugs_scala.CIPHER_INTEGRITY-1
+ gitlab.find_sec_bugs.BAD_HEXA_CONVERSION-1
+ gitlab.find_sec_bugs_scala.HTTP_PARAMETER_POLLUTION-1
+ gitlab.find_sec_bugs.WEAK_FILENAMEUTILS-1
+ gitlab.find_sec_bugs.PATH_TRAVERSAL_OUT-1.PATH_TRAVERSAL_OUT-1
+ gitlab.bandit.B611-2
+ gitlab.bandit.B611-1
+ gitlab.bandit.B703
+ gitlab.bandit.B308.B703
+ gitlab.bandit.B303-6
+ gitlab.bandit.B303-3
+ gitlab.bandit.B303-4
+ gitlab.bandit.B303-5
+ gitlab.bandit.B313.B314.B315.B316.B318.B319.B320.B405.B406.B407.B408.B409.B410
+ gitlab.bandit.B502.B503
+ gitlab.bandit.B108-1
+ gitlab.bandit.B102
+ gitlab.bandit.B501
+ gitlab.bandit.B612
+ gitlab.bandit.B601
+ gitlab.bandit.B610
+ gitlab.bandit.B305
+ gitlab.bandit.B324
+ gitlab.bandit.B304-6
+ gitlab.bandit.B201
+ gitlab.bandit.B313
+ gitlab.bandit.B504
+ gitlab.bandit.B113
+ gitlab.bandit.B606
+ gitlab.bandit.B611
+ gitlab.bandit.B101
+ gitlab.bandit.B302
+ gitlab.bandit.B304-4
+ gitlab.bandit.B303-8
+ gitlab.bandit.B701
+ gitlab.bandit.B505-1
+ gitlab.bandit.B314
+ gitlab.bandit.B502
+ gitlab.bandit.B508
+ gitlab.bandit.B603
+ gitlab.bandit.B404
+ gitlab.bandit.B413
+ gitlab.bandit.B304-9
+ gitlab.bandit.B315
+ gitlab.bandit.B505-2
+ gitlab.bandit.B323
+ gitlab.bandit.B509
+ gitlab.bandit.B602
+ gitlab.bandit.B609
+ gitlab.bandit.B104
+ gitlab.bandit.B301-3
+ gitlab.bandit.B304-1
+ gitlab.bandit.B303-2
+ gitlab.bandit.B318
+ gitlab.bandit.B401
+ gitlab.bandit.B306
+ gitlab.bandit.B604
+ gitlab.bandit.B202
+ gitlab.bandit.B304-7
+ gitlab.bandit.B301-4
+ gitlab.bandit.B304-2
+ gitlab.bandit.B304-10
+ gitlab.bandit.B303-7
+ gitlab.bandit.B702
+ gitlab.bandit.B303-1
+ gitlab.bandit.B319
+ gitlab.bandit.B108
+ gitlab.bandit.B608
+ gitlab.bandit.B301-2
+ gitlab.bandit.B304-3
+ gitlab.bandit.B607
+ gitlab.bandit.B103
+ gitlab.bandit.B304-8
+ gitlab.bandit.B506
+ gitlab.bandit.B304-11
+ gitlab.bandit.B316
+ gitlab.bandit.B320
+ gitlab.bandit.B317
+ gitlab.bandit.B310-1
+ gitlab.bandit.B507
+ gitlab.bandit.B311
+ gitlab.bandit.B605
+ gitlab.bandit.B304-5
+ gitlab.bandit.B304-12
+ gitlab.bandit.B301-1
+ gitlab.bandit.B307
+ gitlab.flawfinder.GetTempFileName-1
+ gitlab.flawfinder.streadd-1.strecpy-1
+ gitlab.flawfinder.getlogin-1
+ gitlab.flawfinder.readlink-1
+ gitlab.flawfinder.mkstemp-1
+ gitlab.flawfinder.EVP_rc4_40-1.EVP_rc2_40_cbc-1.EVP_rc2_64_cbc-1
+ gitlab.flawfinder.scanf-1.vscanf-1.wscanf-1._tscanf-1.vwscanf-1
+ gitlab.flawfinder.getwd-1
+ gitlab.flawfinder.fscanf-1.sscanf-1.vsscanf-1.vfscanf-1._ftscanf-1.fwscanf-1.vfwscanf-1.vswscanf-1
+ gitlab.flawfinder.mktemp-1
+ gitlab.flawfinder.drand48-1.erand48-1.jrand48-1.lcong48-1.lrand48-1.mrand48-1.nrand48-1.random-1.seed48-1.setstate-1.srand-1.strfry-1.srandom-1.g_rand_boolean-1.g_rand_int-1.g_rand_int_range-1.g_rand_double-1.g_rand_double_range-1.g_random_boolean-1.g_random_int-1.g_random_int_range-1.g_random_double-1.g_random_double_range-1
+ gitlab.flawfinder.gsignal-1.ssignal-1
+ gitlab.flawfinder.syslog-1
+ gitlab.flawfinder.crypt-1.crypt_r-1
+ gitlab.flawfinder.strcpyA-1.strcpyW-1.StrCpy-1.StrCpyA-1.lstrcpyA-1.lstrcpyW-1._tccpy-1._mbccpy-1._ftcscpy-1._mbsncpy-1.StrCpyN-1.StrCpyNA-1.StrCpyNW-1.StrNCpy-1.strcpynA-1.StrNCpyA-1.StrNCpyW-1.lstrcpynA-1.lstrcpynW-1
+ gitlab.flawfinder.strcat-1
+ gitlab.flawfinder.lstrcat-1.wcscat-1._tcscat-1._mbscat-1
+ gitlab.flawfinder.g_get_home_dir-1
+ gitlab.flawfinder.tmpfile-1
+ gitlab.flawfinder.CreateProcess-1
+ gitlab.flawfinder.ulimit-1
+ gitlab.flawfinder.SetSecurityDescriptorDacl-1
+ gitlab.flawfinder.fprintf-1.vfprintf-1._ftprintf-1._vftprintf-1.fwprintf-1.fvwprintf-1
+ gitlab.flawfinder.strlen-1.wcslen-1._tcslen-1._mbslen-1
+ gitlab.flawfinder.strccpy-1.strcadd-1
+ gitlab.flawfinder.lstrcatn-1.wcsncat-1._tcsncat-1._mbsnbcat-1
+ gitlab.flawfinder.g_get_tmp_dir-1
+ gitlab.flawfinder.RpcImpersonateClient-1.ImpersonateLoggedOnUser-1.CoImpersonateClient-1.ImpersonateNamedPipeClient-1.ImpersonateDdeClientWindow-1.ImpersonateSecurityContext-1.SetThreadToken-1
+ gitlab.flawfinder.tmpnam-1.tempnam-1
+ gitlab.flawfinder.CreateProcessAsUser-1.CreateProcessWithLogon-1
+ gitlab.flawfinder.usleep-1
+ gitlab.flawfinder.cuserid-1
+ gitlab.flawfinder.printf-1.vprintf-1.vwprintf-1.vfwprintf-1._vtprintf-1.wprintf-1
+ gitlab.flawfinder.strncat-1
+ gitlab.flawfinder.lstrcpy-1.wcscpy-1._tcscpy-1._mbscpy-1
+ gitlab.flawfinder.getenv-1.curl_getenv-1
+ gitlab.flawfinder.umask-1
+ gitlab.flawfinder.execl-1.execlp-1.execle-1.execv-1.execvp-1.popen-1.WinExec-1.ShellExecute-1
+ gitlab.flawfinder.access-1
+ gitlab.flawfinder.memalign-1
+ gitlab.flawfinder.snprintf-1.vsnprintf-1._snprintf-1._sntprintf-1._vsntprintf-1
+ gitlab.flawfinder.strncpy-1
+ gitlab.flawfinder.vfork-1
+ gitlab.flawfinder.sprintf-1.vsprintf-1.swprintf-1.vswprintf-1._stprintf-1._vstprintf-1
+ gitlab.flawfinder.lstrcpyn-1.wcsncpy-1._tcsncpy-1._mbsnbcpy-1
+ gitlab.flawfinder.getpw-1
+ gitlab.flawfinder.MultiByteToWideChar-1
+ gitlab.flawfinder.chmod-1
+ gitlab.flawfinder.AddAccessAllowedAce-1
+ gitlab.flawfinder.atoi-1.atol-1._wtoi-1._wtoi64-1
+ gitlab.flawfinder.EVP_des_ecb-1.EVP_des_cbc-1.EVP_des_cfb-1.EVP_des_ofb-1.EVP_desx_cbc-1
+ gitlab.flawfinder.strcpy-1
+ gitlab.flawfinder.memcpy-1.CopyMemory-1.bcopy-1
+ gitlab.flawfinder.gets-1._getts-1
+ gitlab.flawfinder.StrCat-1.StrCatA-1.StrcatW-1.lstrcatA-1.lstrcatW-1.strCatBuff-1.StrCatBuffA-1.StrCatBuffW-1.StrCatChainW-1._tccat-1._mbccat-1._ftcscat-1.StrCatN-1.StrCatNA-1.StrCatNW-1.StrNCat-1.StrNCatA-1.StrNCatW-1.lstrncat-1.lstrcatnA-1.lstrcatnW-1
+ gitlab.flawfinder.system-1
+ gitlab.flawfinder.chown-1
+ gitlab.flawfinder.equal-1.mismatch-1.is_permutation-1
+ gitlab.flawfinder.LoadLibrary-1
+ gitlab.flawfinder.fopen-1.open-1
+ gitlab.flawfinder.LoadLibraryEx-1
+ gitlab.flawfinder.strtrns-1
+ gitlab.flawfinder.getpass-1
+ gitlab.flawfinder.realpath-1
+ gitlab.security_code_scan.SCS0018-1
+ gitlab.security_code_scan.SCS0010-1
+ gitlab.security_code_scan.SCS0001-1
+ gitlab.security_code_scan.SCS0013-1
+ gitlab.security_code_scan.SCS0026-1.SCS0031-1
+ gitlab.security_code_scan.SCS0006-1
+ gitlab.security_code_scan.SCS0002-1
+ gitlab.security_code_scan.SCS0009-1
+ gitlab.security_code_scan.SCS0029-1
+ gitlab.security_code_scan.SCS0017-1
+ gitlab.security_code_scan.SCS0011-1
+ gitlab.security_code_scan.SCS0003-1
+ gitlab.security_code_scan.SCS0008-1
+ gitlab.security_code_scan.SCS0005-1
+ gitlab.security_code_scan.SCS0004-1
+ gitlab.security_code_scan.SCS0027-1
+ gitlab.security_code_scan.SCS0016-1
+ gitlab.security_code_scan.SCS0032-1.SCS0033-1.SCS0034-1
+ gitlab.security_code_scan.SCS0028-1
+ gitlab.security_code_scan.SCS0007-1
@ oss.others (+0, -9)
- gitlab.bandit.B108-1
- gitlab.bandit.B303-3
- gitlab.bandit.B303-4
- gitlab.bandit.B303-5
- gitlab.bandit.B303-6
- gitlab.bandit.B308.B703
- gitlab.bandit.B313.B314.B315.B316.B318.B319.B320.B405.B406.B407.B408.B409.B410
- gitlab.bandit.B502.B503
- gitlab.eslint.detect-object-injection
@ oss.security_noaudit_novuln (+0, -5)
- gitlab.find_sec_bugs.HARD_CODE_KEY-1
- gitlab.find_sec_bugs.HARD_CODE_KEY-2
- gitlab.find_sec_bugs.HARD_CODE_KEY-3
- gitlab.find_sec_bugs.HARD_CODE_KEY-4
- gitlab.find_sec_bugs.SQL_INJECTION_SPRING_JDBC-1.SQL_INJECTION_JPA-1.SQL_INJECTION_JDO-1.SQL_INJECTION_JDBC-1.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE-1
@ oss.vulns (+0, -0)
```
  • Loading branch information
@thypon
thypon committed Nov 4, 2024
1 parent 67d1941 commit 643301b
Show file tree
Hide file tree
Showing 3 changed files with 29,903 additions and 341 deletions.
Loading

0 comments on commit 643301b

Please sign in to comment.