Open SaintPatrck opened 1 week ago
Checkmarx One ā Scan Summary & Details ā d5a500fc-4103-4e20-ba41-9626df806ba0
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/item/VaultItemViewModel.kt: 581 | Attack Vector |
Severity | Issue | Source File / Package |
---|---|---|
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 347 | |
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 661 | |
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 661 | |
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 661 | |
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 661 | |
Privacy_Violation | /app/src/main/java/com/x8bit/bitwarden/ui/vault/feature/itemlisting/VaultItemListingViewModel.kt: 661 |
šļø Tracking
PM-8137
š Objective
Perform user verification during a FIDO 2 credential registration request.
When saving a new cipher for FIDO 2 credential registration we evaluate the request to determine if user verification should be performed. If user verification cannot be performed the user is notified, and upon acknowledgment the registration process is completed.
WIP
šø Screenshots
Coming soon!
ā° Reminders before review
š¦® Reviewer guidelines
:+1:
) or similar for great changes:memo:
) or ā¹ļø (:information_source:
) for notes or general info:question:
) for questions:thinking:
) or š (:thought_balloon:
) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion:art:
) for suggestions / improvements:x:
) or ā ļø (:warning:
) for more significant problems or concerns needing attention:seedling:
) or ā»ļø (:recycle:
) for future improvements or indications of technical debt:pick:
) for minor or nitpick changes