Open cbilgin23 opened 1 year ago
Due Date: 2022-10-27
A low severity vulnerability has been discovered in your project.
Project Name: twrap-go
Scanner Name: gosec
Cwe ID: 703
Cwe Name: Improper Check or Handling of Exceptional Conditions
Cwe Link: https://cwe.mitre.org/data/definitions/703.html
File: web/mv.go
Line: 1425
-1420 - h.Log.Errorf("handle ImportScanResult: file read error: %v", err) -1421 - return err -1422 - } -1423 - -1424 - h256 := sha256.New() *1425 - h256.Write([]byte(strconv.FormatInt(time.Now().UnixNano(), 10))) -1426 - hash := fmt.Sprintf("%x", h256.Sum(nil)) -1427 - if hash == "" { -1428 - return errors.New("invalid source hash") -1429 - } -1430 - -1431 - tmpDir := fp.Join(common.DirScannerTmp(domain.ToolTrivy), hash)
Language: go
Commit Author: Yusuf
Commit Link: (https://github.com/endpointlabs/twrap-go/commit/4cdcfc63c9a6b74b5e58b3c87b48e8a113037675)
Tool Description: Errors unhandled.
Custom Description: test
Kondukto Link: http://79.kondukto.local/projects/634fe837a5be8478724352c4/vulns/appsec?page=1&perPage=15&id=in:6358dcdeb8bfc0fbb2c3b902 Deeplink: https://cwe.mitre.org/data/definitions/703.html
Due Date: 2022-10-27
A low severity vulnerability has been discovered in your project.
Project Name: twrap-go
Scanner Name: gosec
Cwe ID: 703
Cwe Name: Improper Check or Handling of Exceptional Conditions
Cwe Link: https://cwe.mitre.org/data/definitions/703.html
File: web/mv.go
Line: 1425
Code:
Language: go
Commit Author: Yusuf
Commit Link: (https://github.com/endpointlabs/twrap-go/commit/4cdcfc63c9a6b74b5e58b3c87b48e8a113037675)
Tool Description: Errors unhandled.
Custom Description: test
Kondukto Link: http://79.kondukto.local/projects/634fe837a5be8478724352c4/vulns/appsec?page=1&perPage=15&id=in:6358dcdeb8bfc0fbb2c3b902 Deeplink: https://cwe.mitre.org/data/definitions/703.html