search

checkmarx-ts / CxAnalytix

Exports vulnerability scan data from the Checkmarx SAST platform for use in analytical tools.
Other
20 stars 10 forks source link

Feature/stability #226

Closed nleach999 closed 1 year ago

nleach999 commented 1 year ago

Description

Resolves #225 - documents permissions needed for SAST service account to be able to retrieve scan stats

Stability improvements

github-actions[bot] commented 1 year ago

InferCsharp win-x64 Results /home/runner/work/CxAnalytix/CxAnalytix/Libs/CxAuditTrailsDB/DbAccess.cs:96: error: Dotnet Resource Leak Leaked resource return of type CxAnalytix.CxAuditTrails.DB.DbAccess$FetchResults, Leaked resource con of type Microsoft.Data.SqlClient.SqlConnection in method "DbAccess$FetchResults DbAccess.FetchRecords(String,String,String,String,DateTime)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/CxRestContextBase.cs:127: error: Dotnet Resource Leak Leaked resource (output of System.Net.Http.FormUrlEncodedContent::.ctor() at Line 128) of type System.Net.Http.FormUrlEncodedContent in method "LoginToken CxRestContextBase.GetLoginToken(Dictionary`2<!0,!1>)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/MNO/CxMnoPolicies.cs:28: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "String CxMnoPolicies.GetFlatPolicyNames(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/SAST/CxSastGenerateScanReport.cs:32: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "String CxSastGenerateScanReport.ReadReportId(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/SAST/CxSastScanReportGenStatus.cs:30: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "CxSastScanReportGenStatus$GenStatus CxSastScanReportGenStatus.ReadStatus(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/XForm/SastTransformer/Transformer.cs:996: error: Null Dereference writeQueue could be null (last assigned on line 810) and is dereferenced.

/home/runner/work/CxAnalytix/CxAnalytix/XForm/SastTransformer/Transformer.cs:1011: error: Null Dereference curPathNode could be null (last assigned on line 810) and is dereferenced.

Found 7 issues Issue Type(ISSUED_TYPE_ID): # Dotnet Resource Leak(DOTNET_RESOURCE_LEAK): 5 Null Dereference(NULLPTR_DEREFERENCE): 2

github-actions[bot] commented 1 year ago

InferCsharp linux-x64 Results /home/runner/work/CxAnalytix/CxAnalytix/Libs/CxAuditTrailsDB/DbAccess.cs:96: error: Dotnet Resource Leak Leaked resource return of type CxAnalytix.CxAuditTrails.DB.DbAccess$FetchResults, Leaked resource con of type Microsoft.Data.SqlClient.SqlConnection in method "DbAccess$FetchResults DbAccess.FetchRecords(String,String,String,String,DateTime)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/CxRestContextBase.cs:127: error: Dotnet Resource Leak Leaked resource (output of System.Net.Http.FormUrlEncodedContent::.ctor() at Line 128) of type System.Net.Http.FormUrlEncodedContent in method "LoginToken CxRestContextBase.GetLoginToken(Dictionary`2<!0,!1>)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/MNO/CxMnoPolicies.cs:28: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "String CxMnoPolicies.GetFlatPolicyNames(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/SAST/CxSastGenerateScanReport.cs:32: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "String CxSastGenerateScanReport.ReadReportId(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/Libs/CxRestClient/SAST/CxSastScanReportGenStatus.cs:30: error: Dotnet Resource Leak Leaked resource reader of type Newtonsoft.Json.Linq.JTokenReader in method "CxSastScanReportGenStatus$GenStatus CxSastScanReportGenStatus.ReadStatus(JToken)".

/home/runner/work/CxAnalytix/CxAnalytix/XForm/SastTransformer/Transformer.cs:996: error: Null Dereference writeQueue could be null (last assigned on line 810) and is dereferenced.

/home/runner/work/CxAnalytix/CxAnalytix/XForm/SastTransformer/Transformer.cs:1011: error: Null Dereference curPathNode could be null (last assigned on line 810) and is dereferenced.

Found 7 issues Issue Type(ISSUED_TYPE_ID): # Dotnet Resource Leak(DOTNET_RESOURCE_LEAK): 5 Null Dereference(NULLPTR_DEREFERENCE): 2