Closed tiloyi closed 6 months ago
Checkmarx One – Scan Summary & Details – 7a738d99-d3e3-4423-b2d8-4ff4177ed64e
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
![]() |
Client_Potential_XSS | /packages/gatsby-theme-styleguide/src/components/AreaContact/AreaContact.js: 5 | Attack Vector |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 40 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 37 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 31 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 46 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 58 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 43 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 65 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 53 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 52 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
Severity | Issue | Source File / Package |
---|---|---|
![]() |
Client_Potential_XSS | /packages/gatsby-theme-styleguide/src/components/AreaContact/AreaContact.js: 41 |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 45 |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 57 |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 42 |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 52 |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 36 |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 30 |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 64 |
![]() |
Unpinned Actions Full Length Commit SHA | /release.yml: 39 |
![]() |
Unpinned Actions Full Length Commit SHA | /push.yml: 51 |
[skip ci]
I have read the contributing guidelines
Does this PR introduce a breaking change?
Describe the changes
GitHub issue number or Jira issue URL: N/A
Other information