Check logs Sprint 25.5 Week 2

[cnlucas]

Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

Ref: #5889

• Check booting workers: https://logs.fr.cloud.gov/goto/67b5912713e2588c523b63597baa54e8
• Check memory usage: https://logs.fr.cloud.gov/goto/72391fa43d1cf607fbf1c6b30e71251f
  (Note: Copy above links in a browser to view the metrics)
• Make new tickets for sprint 25.6 weeks 1 and 2

[fec-jli]

Note: The following issues were logged based off snyk cli in addition to snyk dashboard.

FEC-CMS: 3
package.json: 0
requirements.txt: 7
[Snyk Medium - requests@requests@2.31.0 Always-Incorrect Control Flow Implementation] (fecgov/fec-cms#6285)
[Snyk Medium - zipp Infinite loop] (fecgov/fec-cms#6367)
[Snyk Medium - urllib3@1.26.18 Improper Removal of Sensitive Information Before Storage or Transfer] -(fecgov/fec-cms#6343)
[Snyk Medium - fix 4 issues: django Denial of Service (DoS,Directory Traversal
,Timing Attack)] -(fecgov/fec-cms#6376)

OpenFEC: 6
package.json: 0
[Snyk Medium] - async - (#5891)
requirements.txt: 6
[Snyk Low - Flask-cors Log Injection LOCUST ] - #5807
[Snyk Medium - requests Always-Incorrect Control Flow Implementation] - (#5845)
[Snyk Medium - urllib3@1.26.18 Improper Removal of Sensitive Information Before Storage or Transfer] -(#5877)
[Snyk Medium - Insufficient Verification of Data Authenticity] - (#5845)
[Snyk Medium - Infinite loop] - (#5898)
[Snyk High] - - setuptools Improper Control of Generation of Code ('Code Injection')(#5907)

Pattern-Library: 0

Search logs:
No "User changes" found in the past week.
Deployer accounts from cloud.gov dashboard: 10

[fec-jli]

This is done. closed