fecgov / openFEC

The first RESTful API for the Federal Election Commission. We're aiming to make campaign finance more accessible for journalists, academics, developers, and other transparency seekers.
https://api.open.fec.gov/developers
Other
480 stars 106 forks source link

Check logs 21.6 Week 1 #5460

Closed cnlucas closed 1 year ago

cnlucas commented 1 year ago

Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

Ref: [Check logs PI 21.5 week 2] (https://github.com/fecgov/openFEC/issues/5439)

(Note: Copy above links in a browser to view the metrics)

tmpayton commented 1 year ago

FEC-CMS: package.json: None requirements.txt: django Arbitrary File Upload https://github.com/fecgov/fec-cms/issues/5726 requests Information Exposure https://github.com/fecgov/fec-cms/issues/5749

OPENFEC: package.json: None flyway: Arbitrary Code Execution requirements.txt: flask Information Exposure https://github.com/fecgov/openFEC/issues/5440 requests Information Exposure https://github.com/fecgov/openFEC/issues/5459

FEC-EREGS: package.json: None requirements.txt: django Arbitrary File Upload https://github.com/fecgov/fec-eregs/issues/760 requests Information Exposure https://github.com/fecgov/fec-eregs/issues/765

FEC-PATTERN-LIBRARY: package.json: None

Search logs: User change: None

Cloud.gov Dashboard: 6 deployer accounts

Off-boarding: 0

Health check: memory usage: ok booting workers: ok