TEST 2 #26
TEST 2 #26
Conversation
Deploying with
|
| Latest commit: |
999c37a
|
| Status: | 🚫 Build failed. |
|
Kudos, SonarCloud Quality Gate passed!
|
Dependency Review✅ No vulnerabilities or license issues found.Scanned Manifest Files.github/workflows/dependency-review.yml
package.json
|
Micro-Learning Topic: OS command injection (Detected by phrase)Matched on "Command Injection"In many situations, applications will rely on OS provided functions, scripts, macros and utilities instead of reimplementing them in code. While functions would typically be accessed through a native interface library, the remaining three OS provided features will normally be invoked via the command line or launched as a process. If unsafe inputs are used to construct commands or arguments, it may allow arbitrary OS operations to be performed that can compromise the server. Try a challenge in Secure Code WarriorHelpful references
Micro-Learning Topic: Prototype pollution (Detected by phrase)Matched on "Prototype Pollution"By adding or modifying attributes of an object prototype, it is possible to create attributes that exist on every object, or replace critical attributes with malicious ones. This can be problematic if the software depends on existence or non-existence of certain attributes, or uses pre-defined attributes of object prototype (such as hasOwnProperty, toString or valueOf). Try a challenge in Secure Code Warrior |
|
Kudos, SonarCloud Quality Gate passed!
|
|
This PR has been automatically marked as |
|
This PR was closed because it has been stalled for 14 days with no activity. |
Description
A clear and concise summary of the change and which issue (if any) it fixes. Should also include relevant motivation and context.
Resolved or fixed issue:
Affirmation