search

fecgov / openFEC

The first RESTful API for the Federal Election Commission. We're aiming to make campaign finance more accessible for journalists, academics, developers, and other transparency seekers.
https://api.open.fec.gov/developers
Other
480 stars 106 forks source link

Check logs 21.4 Week 2 #5429

Closed pkfec closed 1 year ago

pkfec commented 1 year ago

Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

Ref: [Check logs PI 21.4 week 1] (https://github.com/fecgov/openFEC/issues/5428)

(Note: Copy above links in a browser to view the metrics)

cnlucas commented 1 year ago

FEC-CMS: package.json: None requirements.txt: pillow Denial of Service (DoS) #5722 django Arbitrary File Upload https://github.com/fecgov/fec-cms/issues/5726

OPENFEC: package.json: None flyway: None requirements.txt: flask Information Exposure https://github.com/fecgov/openFEC/issues/5440

FEC-EREGS: package.json: None requirements.txt: django Arbitrary File Upload https://github.com/fecgov/fec-eregs/issues/760

FEC-PATTERN-LIBRARY: package.json: None

Search logs: User change: None

Cloud.gov Dashboard: 6 deployer accounts

Off-boarding: 0

Health check: memory usage: ok booting workers: ok