Check logs - 'bug week and planning'

[hcaofec]

Log review needs to be completed for 'bug week and planning' per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

[hcaofec]

FEC-CMS: 2
package.json - 1 Medium
[Med] Snyk: Cross-site Scripting (XSS) (due 10/8) fecgov/fec-cms#2262

requirements.txt - 1 Medium
[Med] Open Redirect (due 10/8) fecgov/fec-cms#2263

OPENFEC: 2
requirements.txt - 1 High, 1 Medium
[High] Snyk: Improper Input Validation - #3344
[Med per Jay] Arbitrary Code Execution (due 9/10) - #3280

FEC-EREGS: 0

FEC-PATTERN-LIB: 4
package.json - 2 medium, 2 Low
[MED] ua-parser-js module - Regular Expression Denial of Service (ReDoS) - fecgov/fec-pattern-library#116
[MED] chownr - Time of Check Time of Use (TOCTOU) - fecgov/fec-pattern-library#127
[LOW] Two low risk modues : lodash and braces - fecgov/fec-pattern-library#117

Add/Update User Accounts:
August 27th 2018, 12:49:04.037 | cms | INFO:home.models: User change: User vmohan was added to group Editors
August 27th 2018, 12:49:04.037 | cms | INFO:home.models: User change: User vmohan was added to group Moderators
August 27th 2018, 12:49:04.028 | cms | INFO:home.models: User change: username vmohan by instance vmohan

Deployer Accounts/Service Keys :
9 service keys found on cloud.gov under fec-beta-fec org