pkfec
commented
1 year ago FEC-CMS: 1 package.json: None requirements.txt: 1 [Snyk High] (Django Regular Expression Denial of Service)[https://github.com/fecgov/fec-cms/issues/5791]
OPENFEC: 3 package.json: None
requirements.txt: 2 [Snyk High] (flask Information Exposure) [https://github.com/fecgov/openFEC/issues/5440] [Snyk Medium] (requests Information Exposure) [https://github.com/fecgov/openFEC/issues/5459]
requirements-dev.txt: 1 [Snyk Medium] (Setuptools Regular Expression Denial of Service)[https://github.com/fecgov/openFEC/issues/5477]
FLYWAY: 2 [Snyk High] (Denial of Service)[https://github.com/fecgov/openFEC/issues/5482] [Snyk Low] (Creation of Temporary File in Directory with Insecure Permissions[https://github.com/fecgov/openFEC/issues/5478]
FEC-EREGS: 1 package.json: None requirements.txt: 1 [Snyk High] (Django Regular Expression Denial of Service)[https://github.com/fecgov/fec-eregs/issues/773]
FEC-PATTERN-LIBRARY: package.json: None
Search logs: User change: None
Cloud.gov Dashboard: 6 deployer accounts
Off-boarding: 0
Health check: memory usage: ok booting workers: ok
Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)
Ref: [Check Logs Innovation Week 3] (https://github.com/fecgov/openFEC/issues/5469)
(Note: Copy above links in a browser to view the metrics)