-
**Command_Injection** issue exists @ **riches/pages/content/oper/Newsletter.jsp** in branch **master**
*The application's sendMail method calls an OS (shell) command with exec, at line 53 of riches…
-
### Issue
The Docker image created by this action is missing required libraries for SCA resolver to run:
- `libstdc++`
- `zlib`
### Proposed solution
By embedding SCA resolver, its integr…
-
### Describe the bug
The plugin disables the fields for selecting project, branch and scan several times:
![image](https://github.com/Checkmarx/ast-vscode-extension/assets/137796808/91bb030a-8d6…
-
**SQL_Injection** issue exists @ **riches/WEB-INF/src/java/com/fortify/samples/riches/restful/AccountResources.java** in branch **master**
*The application's IsProfileExist method executes an SQL q…
-
**SQL_Injection** issue exists @ **riches/WEB-INF/src/java/com/fortify/samples/riches/restful/TransactionResources.java** in branch **master**
*The application's IsProfileExist method executes an S…
-
### Describe the "bug"
I've identified a critical security vulnerability within the GitHub Action due to the handling of the "ADDITIONAL_PARAMETERS" input. The issue arises from the use of `eval` to …
-
### Describe the bug
Sometimes we have builds failing due to:
"Error validating scan types: Failed to authenticate - please provide an access key ID"
On reruns the problem goes away and we hav…
-
### Bug
When running the Checkmarx AST task in our Azure DevOps pipeline, the scan completes, but the results export fails with an “Object reference not set” error. Additionally, on a second attempt …
-
As of the writing of this issue, only Java & C/C++ are supported languages. Please add support for JavaScript/ECMAScript, including support for Node.js. I imagine TypeScript could be in this convers…
-
**The context**
Error creating bean with name 'grpcHealthService'
**The question**
I'm using
grpc-server-spring-boot-starter - 2.14.0.RELEASE ans when start my app i got error while Initial…