Demo-Code-Complete Add DevSecOps-4837 demo page with intentional GHAS vulnerabilities #132
16 new alerts including 7 high severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 7 high
- 2 medium
Other Alerts:
- 1 warning
- 6 notes
See annotations below for details.
Annotations
Check failure on line 37 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 41 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 112 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Denial of Service from comparison of user input against expensive regex High
Check failure on line 113 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 118 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 127 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Insecure SQL connection High
Check failure on line 135 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check warning on line 99 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Useless assignment to local variable Warning
Check warning on line 113 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Exposure of private information Medium
Check warning on line 118 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Exposure of private information Medium
Check notice on line 36 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 40 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 107 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 119 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 131 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 140 in src/webapp01/Pages/DevSecOps-4837.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note