Conversation
SummaryShiftLeft NextGen Static Analysis detected 217 findings in this PR
Additionally there are 4 secrets leaked, and 117 vulnerabilities Build RulesBuild rule with ID "allow-zero-findings" failed because it matched 213 findings and the configured threshold is 0 Get more information about this scan. |
SummaryShiftLeft NextGen Static Analysis detected 216 findings in this PR
Additionally there are 4 secrets leaked, and 116 vulnerabilities Build RulesBuild rule with ID "allow-zero-findings" failed because it matched 212 findings and the configured threshold is 0 Get more information about this scan. |
|
SummaryShiftLeft NextGen Static Analysis detected 219 findings in this PR
Additionally there are 4 secrets leaked, and 119 vulnerabilities Build RulesBuild rule with ID "allow-zero-findings" failed because it matched 215 findings and the configured threshold is 0 Get more information about this scan. |
|
Checking analysis of application
|
| ID | Severity | Title |
|---|---|---|
| 442 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| Severity | Count |
|---|---|
| Critical | 1 |
| Moderate | 0 |
| Info | 0 |
reachable-oss-vuln: FAIL (1 matched vulnerabilities; configured threshold is 0)
New findings:
| ID | Severity | Title |
|---|---|---|
| 442 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| Severity | Count |
|---|---|
| Critical | 1 |
| Moderate | 0 |
| Info | 0 |
2 rules failed.
|
Neither source branch nor scan specified; switching to 'single' mode.
Checking analysis of application
|
| ID | Severity | Title |
|---|---|---|
| 80 | critical | Sensitive Data Leak: Security-sensitive data leaked to console via firstName in CustomerController.debugEscaped |
| 83 | critical | Sensitive Data Leak: Sensitive data is leaked to log in PatientController.getPatient |
| 85 | critical | Sensitive Data Leak: Sensitive data is leaked via amount to log in AccountController.withdrawFromAccount |
| 86 | critical | Sensitive Data Leak: Sensitive data is leaked via account to log in AccountController.createAccount |
| 87 | critical | Sensitive Data Leak: Sensitive data is leaked to log in AccountController.getAccount |
| Severity | Count |
|---|---|
| Critical | 63 |
| Moderate | 108 |
| Info | 44 |
| Finding Type | Count |
|---|---|
| Vuln | 96 |
| Secret | 0 |
| Insight | 0 |
| Extscan | 0 |
| Oss_vuln | 119 |
| Package | 0 |
| Category | Count |
|---|---|
| Sensitive Data Usage | 41 |
| Sensitive Data Leak | 33 |
| XSS | 9 |
| Header Injection | 3 |
| Directory Traversal | 3 |
| Deserialization | 3 |
| Security Best Practices | 2 |
| Session Injection | 1 |
| Log Forging | 1 |
| OWASP Category | Count |
|---|---|
| A3-Sensitive-Data-Exposure | 77 |
| A3-Cross-Site-Scripting | 9 |
| A1-Injection | 3 |
| A5-Broken-Access-Control | 3 |
| A8-Deserialization | 3 |
| A2-Broken-Authentication | 1 |
reachable-oss-vuln: FAIL ( 44 matched vulnerabilities; configured threshold is 0)
First 10 findings:
| ID | Severity | Title |
|---|---|---|
| 272 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 273 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 274 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 275 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 276 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 277 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 278 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 279 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 280 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| 281 | critical | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11 |
| Severity | Count |
|---|---|
| Critical | 38 |
| Moderate | 6 |
| Info | 0 |
2 rules failed.
Update shiftleft.yml to add attackable OSS to build rules
1 participant
No description provided.