[CodeQL] Scan results (master)

[github-actions[bot]]

Overview

CodeQL is the analysis engine used by developers to automate security checks, and by security researchers to perform variant analysis. In CodeQL, code is treated like data. Security vulnerabilities, bugs, and other errors are modeled as queries that can be executed against databases extracted from code. To learn more about CodeQL, see the documentation.

Summary of results

The following issues were identified. See additional details (including guidance on fixing issues) on the Security tab of this repository.

Issue	Severity	Occurrences
Missing CSRF middleware	High	1
Database query built from user-controlled sources	High	4
Client-side cross-site scripting	High	3
Inefficient regular expression	High	1
Hard-coded credentials	Medium	1
Missing rate limiting	Medium	1
Clear text transmission of sensitive cookie	Medium	1
Server-side URL redirect	Medium	1
Unsafe expansion of self-closing HTML tag	Medium	2
DOM text reinterpreted as HTML	Medium	6
Unsafe jQuery plugin	Medium	6
Polynomial regular expression used on uncontrolled data	Medium	1

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.

[github-actions[bot]]

A subsequent scan was executed.