Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Test of PR Annotation via Fortify GitHub Actions #28

Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

Test of PR Annotation via Fortify GitHub Actions #28

wants to merge 7 commits into from

Conversation

kadraman
Copy link
Contributor

@kadraman kadraman commented Nov 4, 2024

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Nov 4, 2024
View reviewed changes
src/main/java/com/microfocus/example/web/controllers/DefaultController.java

String retContent = "Backdoor search using: " + keywords;

return ResponseEntity.ok().body(retContent);

Check warning

Code scanning / Fortify on Demand

Cross-Site Scripting: Reflected Warning

The method getKeywordsContent() in DefaultController.java sends unvalidated data to a web browser on line 280, which can result in the browser executing malicious code. More information
src/main/java/com/microfocus/example/web/controllers/ProductController.java

String retContent = "Product search using: " + keywords;

return ResponseEntity.ok().body(retContent);

Check warning

Code scanning / Fortify on Demand

Cross-Site Scripting: Reflected Warning

The method getKeywordsContent() in ProductController.java sends unvalidated data to a web browser on line 97, which can result in the browser executing malicious code. More information
src/main/resources/application.yml
@@ -63,7 +63,7 @@
default-encoding: UTF-8
host: smtp.sendgrid.net
username: apikey
password: # Your API Password
password: password

Check warning

Code scanning / Fortify on Demand

Password Management: Hardcoded Password Warning

Hardcoded passwords can compromise system security in a way that is difficult to remedy. More information
@github-actions GitHub Actions
Copy link

github-actions bot commented Nov 4, 2024

Test Results

219 tests  ±0   185 ✅ ±0   3s ⏱️ ±0s
 48 suites ±0    34 💤 ±0 
 48 files   ±0     0 ❌ ±0 

Results for commit 934f055. ± Comparison against base commit 6bd1fc2.

github-actions[bot]
github-actions bot reviewed Nov 4, 2024
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fortify vulnerability summary

Any issues listed below are based on comparing the latest scan results against the previous scan results in FoD release IWA-PharmacyDirect [KAL] - 28/merge. This is for informational purposes only and, depending on workflow, may not be an accurate representation of what issues will be introduced into or removed from the target branch when merging this PR.

New Issues

Removed Issues

  • No removed issues were detected

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kadraman