issues
search
nccgroup
/
sobelow
Security-focused static analysis for the Phoenix Framework
Apache License 2.0
1.66k
stars
92
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Document Sobelow.XSS.SendResp
#69
jared-mackey
closed
1 year ago
7
Document Sobelow.Traversal.SendDownload
#68
jared-mackey
closed
1 year ago
0
Error: ranges (first..last) expect both sides to be integers...
#67
romaluca
closed
4 years ago
2
Missing sweet_xml vulnerability?
#66
Cohen-Carlisle
closed
4 years ago
1
config folder not scanned in umbrella projects
#65
Helpys
closed
4 years ago
2
Protocol.UndefinedError with format json
#64
lleger
closed
4 years ago
6
Feature Request: Scan multiple apps in the same command
#63
aselder
closed
1 year ago
3
Add docs with a solution on how to solve the check
#62
pdgonzalez872
closed
4 years ago
1
Question about how to solve error: `Config.CSP: Missing Content-Security-Policy - High Confidence`
#61
pdgonzalez872
closed
4 years ago
3
Add syntax highlighting to installation section
#60
gabrielgiordan
closed
4 years ago
0
Installation docs incomplete
#59
retpoline
opened
4 years ago
2
{:error, :eisdir} error after upgrade to 0.10.0
#58
jay-meister
closed
4 years ago
6
Possible to stop updating the timestamp in .sobelow file if --private flag is used?
#57
benmap-brex
closed
4 years ago
7
Allow for piping into send_download function
#56
samhstn
closed
4 years ago
1
send_download not always captured
#55
samhstn
closed
4 years ago
3
Sobelow.XSS.Raw JSON schema missing `line` key
#54
NickMeves
closed
4 years ago
2
Error when analysing pipeline
#53
gabrielpra1
closed
4 years ago
4
Possibility to handle multiple routers
#52
TBK145
closed
4 years ago
1
sobelow version check
#51
InoMurko
closed
4 years ago
1
error when printing variable in `map.key` format
#50
calvin-kargo
closed
4 years ago
3
Preferred CSP Header Causes Test Failure
#49
jherdman
closed
5 years ago
1
** (FunctionClauseError) no function clause matching in Sobelow.Utils.binarize_app_name/2
#48
0x234
closed
5 years ago
1
Handle configuration merges
#47
beardedeagle
opened
5 years ago
0
Enhancement to Reporting (JSON)
#46
streichsbaer
closed
5 years ago
9
Utils.get_app_name/1 now understands the mod attr as application name
#45
am-kantox
closed
5 years ago
1
Feature Request: Add a filter on confidence level
#44
Electronickss
closed
5 years ago
6
Fix quiet with empty string out
#43
Nitrino
closed
5 years ago
2
Do not halt execution on a successful check
#42
Nitrino
closed
5 years ago
3
Fix log finding of hardcorded secrets
#41
angelikatyborska
closed
5 years ago
1
Adding some more info into the README for first-time adopters to get …
#40
vraravam
closed
5 years ago
0
Feature request: Output captured in file
#39
vraravam
closed
5 years ago
9
Support Phoenix.Controller.html#put_secure_browser_headers/2 method in Sobelow.Config.CSP check
#38
akrisanov
closed
6 years ago
2
AST parser displays incorrect line-number
#37
rahiparikh
closed
6 years ago
1
Bugfixes + JSON Parser Update + Test cases
#36
rahiparikh
closed
6 years ago
2
Better JSON formatting, and more thorough hardcoded secret details
#35
rahiparikh
closed
6 years ago
4
Mark `:binary` `send_download` safe when keyword list options present
#34
tmecklem
closed
6 years ago
1
Directory Traversal incorrectly marks `send_download(_, {:binary, _}, filename: _` as unsafe due to keyword list arg
#33
tmecklem
closed
6 years ago
2
Add suggestions for fixes
#32
seanhandley
closed
5 years ago
5
Add flag for scanning multiple applications
#31
GriffinMB
closed
4 years ago
3
Not well configured for umbrella projects
#30
samhstn
closed
6 years ago
5
casting foreign keys in ecto changesets
#29
ghost
opened
6 years ago
2
[Bug] 'String.Chars not implemented' for json format
#28
uberspot
closed
6 years ago
5
Cannot skip RCE Module
#27
kenips
closed
6 years ago
2
Timeout in version check
#26
kyleaa
closed
6 years ago
1
Can we have a CHANGELOG.md
#25
davich
closed
6 years ago
3
False positive with HTTPS check
#24
adamnbowen
closed
7 years ago
3
-i not working.
#23
davich
closed
7 years ago
1
Add `--compact` and `--quiet` options for less output
#22
OldhamMade
closed
7 years ago
5
change the router error message to a warning message
#21
mmmries
closed
7 years ago
1
CSRF Check
#20
veverkap
closed
7 years ago
1
Previous
Next