Merge pull request #48 from art-tykh/feature/incremental-scan

Feature/incremental scan
art-tykh · Mar 15, 2021 · 37793e1 · 37793e1 · github-actions · Mar 15, 2021
2 parents b33e77e + 5e64da8
commit 37793e1
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 2 deletions.
diff --git a/.github/workflows/checkmarx.yml b/.github/workflows/checkmarx.yml
@@ -12,4 +12,8 @@ jobs:
           cxServer: https://macpaw.checkmarx.net/
           cxUsername: MacpawAdmin@Cx.Com
           cxPassword: ${{ secrets.CX_PASSWORD }}
-          cxTeam: /CxServer
+          cxTeam: /CxServer
+          cxGithubIssues: true
+          cxGithubToken: ${{ secrets.GITHUB_TOKEN }}
+          cxGithubLabels: bug,test
+          cxIncremental: true
diff --git a/app/routes/contributions.js b/app/routes/contributions.js
@@ -32,7 +32,6 @@ function ContributionsHandler(db) {
         const preTax = eval(req.body.preTax);
         const afterTax = eval(req.body.afterTax);
         const roth = eval(req.body.roth);
-        const roth2 = eval(req.body.roth);
 
         /*
         //Fix for A1 -1 SSJS Injection attacks - uses alternate method to eval
Queries	Total Results
Code_Injection	3
Security_Misconfiguration	3
Reflected_XSS	1
Missing_HSTS_Header	2
Privacy_Violation	2
ReDOS_in_RegExp	2
Missing_Encryption_of_Sensitive_Data	2
Unsafe_Use_Of_Target_blank	7
Client_Server_Empty_Password	6
Use_Of_Hardcoded_Password	5
Missing_CSP_Header	2
Client_Password_In_Comment	2
Potentially_Vulnerable_To_Xsrf	2
Potential_Clickjacking_on_Legacy_Browsers	1
Client_Use_Of_Iframe_Without_Sandbox	1
Open_Redirect	1
Use_Of_HTTP_Sensitive_Data_Exposure	1