Closed vgrassia closed 6 months ago
Checkmarx One – Scan Summary & Details – f8613fdb-204b-4829-ba46-05c858731f0c
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
SSRF | /src/services/onelogin-directory.service.ts: 178 | Attack Vector | |
Unpinned Actions Full Length Commit SHA | /build.yml: 664 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
Severity | Issue | Source File / Package |
---|---|---|
Unpinned Actions Full Length Commit SHA | /build.yml: 665 | |
Use_of_Broken_or_Risky_Cryptographic_Algorithm | /jslib/node/src/services/nodeCryptoFunction.service.ts: 138 | |
Use_of_Broken_or_Risky_Cryptographic_Algorithm | /jslib/node/src/services/nodeCryptoFunction.service.ts: 178 | |
Use_of_Broken_or_Risky_Cryptographic_Algorithm | /jslib/node/src/services/nodeCryptoFunction.service.ts: 99 | |
Use_of_Broken_or_Risky_Cryptographic_Algorithm | /jslib/node/src/services/nodeCryptoFunction.service.ts: 87 | |
Use_of_Broken_or_Risky_Cryptographic_Algorithm | /jslib/node/src/services/nodeCryptoFunction.service.ts: 21 |
Type of change
Objective
This PR removes the
.github/secrets
directory and moves all of the certificates to thebitwarden-ci
Key Vault.Code changes
Before you submit