Code Security Report: 7 total findings #9

mend-for-github-com · 2022-04-22T20:06:39Z

Code Security Report

Latest Scan: 2022-04-22 08:02pm
Total Findings: 7
Tested Project Files: 2016
Detected Programming Languages: 3
Scan URL: https://saas.whitesourcesoftware.com/sast/#/scans/c903faac-0dca-47ad-b9cc-dbe4cdd12af1/details

Check this box to manually trigger a scan

Language: Java

Severity	CWE	Vulnerability Type	Count
Medium	CWE-79	Cross-Site Scripting	1
Low	CWE-209	Error Messages Information Exposure	4

Details

Cross-Site Scripting (CWE-79) : 1

Findings

springfox-petstore/src/main/java/springfox/petstore/controller/UserController.java:58

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-petstore/src/main/java/springfox/petstore/controller/UserController.java#L53-L58

Error Messages Information Exposure (CWE-209) : 4

Findings

springfox-spring-web/src/main/java/springfox/documentation/spring/web/plugins/DefaultRequestHandlerCombiner.java:110

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-spring-web/src/main/java/springfox/documentation/spring/web/plugins/DefaultRequestHandlerCombiner.java#L105-L110

springfox-schema/src/main/java/springfox/documentation/schema/CachingModelDependencyProvider.java:60

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-schema/src/main/java/springfox/documentation/schema/CachingModelDependencyProvider.java#L55-L60

springfox-schema/src/main/java/springfox/documentation/schema/CachingModelProvider.java:61

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-schema/src/main/java/springfox/documentation/schema/CachingModelProvider.java#L56-L61

springfox-schema/src/main/java/springfox/documentation/schema/property/CachingModelPropertiesProvider.java:67

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-schema/src/main/java/springfox/documentation/schema/property/CachingModelPropertiesProvider.java#L62-L67

Language: JavaScript / Node.js

No findings detected.

Language: Groovy

Severity	CWE	Vulnerability Type	Count
Low	CWE-209	Error Messages Information Exposure	2

Details

Error Messages Information Exposure (CWE-209) : 2

Findings

springfox-schema/src/main/java/springfox/documentation/schema/property/CachingModelPropertiesProvider.java:66

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/springfox-schema/src/main/java/springfox/documentation/schema/property/CachingModelPropertiesProvider.java#L61-L66

swagger-contract-tests/src/test/groovy/springfox/test/contract/swaggertests/FileAccess.groovy:46

https://github.com/sjwss/springfox-2.9.2/blob/31407d3503ffc437c2da73c9bd5764d25a3e5d13/swagger-contract-tests/src/test/groovy/springfox/test/contract/swaggertests/FileAccess.groovy#L41-L46

mend-for-github-com bot added the code security findings Code security findings detected by WhiteSource label Apr 22, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Code Security Report: 7 total findings #9

Code Security Report: 7 total findings #9

mend-for-github-com bot commented Apr 22, 2022

Findings

Findings

Findings

Code Security Report: 7 total findings #9

Code Security Report: 7 total findings #9

Comments

mend-for-github-com bot commented Apr 22, 2022

Code Security Report

Language: Java

Details

Findings

Findings

Language: JavaScript / Node.js

Language: Groovy

Details

Findings