Added code for brancehed scan project

[satyamchaurasiapersistent]

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Describe the purpose of this PR along with any background information and the impacts of the proposed change.

References

Include supporting link to GitHub Issue/PR number

Testing

Describe how this change was tested. Be specific about anything not tested and reasons why. If this solution has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.

Please include any manual steps for testing end-to-end or functionality not covered by unit/integration tests.

Checklist

• [ ] I have added documentation for new/changed functionality in this PR (if applicable). If documentation is a Wiki Update, please indicate desired changes within PR MD Comment
• [ ] All active GitHub checks for tests, formatting, and security are passing
• [ ] The correct base branch is being used
• [ ] Verified that SCA and SAST scan results are as expected

[AvivCx]

Checkmarx One – Scan Summary & Details – 2381b8fb-cd4b-4c8c-b800-fccfc0d9030b

New Issues

Severity	Issue	Source File / Package	Checkmarx Insight
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 202	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 199	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 58	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/TfsController.java: 55	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 218	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 208	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 211	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 107	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 222	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 211	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 188	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 111	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 185	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 94	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 257	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 438	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 442	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 443	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 218	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 211	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 208	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 107	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 222	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 211	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 188	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 111	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 185	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 66	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 211	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 83	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	Attack Vector
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	Attack Vector

Fixed Issues

Severity	Issue	Source File / Package
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 199
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 58
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 218
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 208
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 107
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 222
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72
	SSRF	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 188
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 111
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 185
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 66
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 218
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 208
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 107
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 222
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 188
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/postwebhook/PostWebhookController.java: 111
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/server/BitbucketServerController.java: 185
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 438
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 66
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 257
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 94
	SSRF	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 58
	SSRF	/src/main/java/com/checkmarx/flow/controller/ADOController.java: 199
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 442
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 443
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitLabController.java: 211
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 94
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 257
	SSRF	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 438
	SSRF

More results are available on AST platform