Skip to content

fix: remove hardcoded passwords in unit tests to resolve Snyk issues 08-07-2026#171

Merged
OMpawar-21 merged 1 commit into
mainfrom
fix/Snyk-fix-08-06-2026
Jul 8, 2026
Merged

fix: remove hardcoded passwords in unit tests to resolve Snyk issues 08-07-2026#171
OMpawar-21 merged 1 commit into
mainfrom
fix/Snyk-fix-08-06-2026

Conversation

@OMpawar-21

Copy link
Copy Markdown
Contributor

Fixes

  • tests/unit/user_session/test_user_session_totp.py: source test_password via os.getenv("TEST_PASSWORD", ...) instead of a bare literal
  • tests/unit/users/test_users.py: reuse the existing password variable (already loaded from env via tests/cred.py) in test_active_user and test_reset_password instead of hardcoded literals

… findings

- tests/unit/user_session/test_user_session_totp.py: source test_password via
  os.getenv("TEST_PASSWORD", ...) instead of a bare literal
- tests/unit/users/test_users.py: reuse the existing `password` variable
  (already loaded from env via tests/cred.py) in test_active_user and
  test_reset_password instead of hardcoded literals
@OMpawar-21 OMpawar-21 requested a review from a team as a code owner July 8, 2026 06:56
@github-actions

github-actions Bot commented Jul 8, 2026

Copy link
Copy Markdown

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 0 1 25 ✅ Passed
🟡 Medium Severity 0 3 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

✅ No SLA breaches detected. All vulnerabilities are within acceptable time thresholds.

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 0 90 / 365 days ✅ Passed
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 1
  • Medium without fixes: 3
  • Low without fixes: 0

✅ BUILD PASSED - All security checks passed

@OMpawar-21 OMpawar-21 merged commit fd911f8 into main Jul 8, 2026
8 checks passed
@OMpawar-21 OMpawar-21 deleted the fix/Snyk-fix-08-06-2026 branch July 8, 2026 10:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants