feat: Add DevSecOps-7809 demo page with intentional vulnerabilities for GHAS demonstration #137
13 new alerts including 5 high severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 5 high
Other Alerts:
- 1 warning
- 7 notes
See annotations below for details.
Annotations
Check failure on line 48 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 61 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Denial of Service from comparison of user input against expensive regex High
Check failure on line 62 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 67 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 73 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Insecure SQL connection High
Check warning on line 146 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Useless assignment to local variable Warning
Check notice on line 45 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 57 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 68 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 81 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 181 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 179 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Redundant ToString() call Note
Check notice on line 216 in src/webapp01/Pages/DevSecOps-7809.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note