search

NASA-PDS / mi-label

Metadata Injector for PDS Labels (MILabel) provides a command-line interface for generating PDS4 Labels using a user provided PDS4 XML template and input (source) data products.
https://nasa-pds.github.io/mi-label/
Other
3 stars 1 forks source link

[SECURITY] Update Reference equality test on strings #8

Closed jordanpadams closed 4 years ago

jordanpadams commented 4 years ago

Vulnerability

Determine if the findings about string object comparison issues do exist and determine the potential consequences if they are.

File Warning Line Warning Text Notes
mi-label/src/main/java/gov/nasa/pds/imaging/generate/label/JsonLabel.java 536 Reference equality test on strings (CWE-597) Confirm the intention is to compare the object may need to test with .equals
mi-label/src/main/java/gov/nasa/pds/imaging/generate/label/JsonLabel.java 538 Reference equality test on strings (CWE-597) Confirm the intention is to compare the object may need to test with .equals
mi-label/src/main/java/gov/nasa/pds/imaging/generate/label/JsonLabel.java 638 Reference equality test on strings (CWE-597) Confirm the intention is to compare the object may need to test with .equals
mi-label/src/main/java/gov/nasa/pds/imaging/generate/label/JsonLabel.java 643 Reference equality test on strings (CWE-597) Confirm the intention is to compare the object may need to test with .equals