issues
search
openrewrite
/
rewrite-java-security
OpenRewrite recipes for patching Java security vulnerabilities.
Apache License 2.0
17
stars
15
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
update suppressions for 09-25-2024 vulnerability report
#144
natedanner
closed
3 days ago
0
refactor: Update Gradle wrapper
#143
shanman190
closed
1 week ago
0
suppress spring-data-mongodb coming in via rewrite-spring
#142
pstreef
closed
3 weeks ago
0
refactor: Update Gradle wrapper
#141
shanman190
closed
3 weeks ago
0
Migrate to JSpecify from OpenRewrite JSR-305 meta-annotations
#140
jkschneider
closed
1 month ago
0
Migrate to JSpecify from OpenRewrite JSR-305 meta-annotations
#139
jkschneider
closed
1 month ago
0
Migrate from OpenRewrite JSR-305 meta-annotations to JSpecify
#138
jkschneider
closed
1 month ago
0
refactor: Update Gradle wrapper
#137
shanman190
closed
1 month ago
0
Verify markers are placed on `Yaml.Sequence.Entry`, but not printed
#136
timtebeek
opened
2 months ago
1
refactor: Update Gradle wrapper
#134
shanman190
closed
2 months ago
0
refactor: Update Gradle wrapper
#133
shanman190
closed
4 months ago
0
Remove Random import during SecureRandom recipe
#132
Bananeweizen
closed
5 months ago
0
SecureRandom should have maybeRemoveImport("java.util.Random")
#131
Bananeweizen
closed
5 months ago
0
refactor: Common static analysis issues
#130
kmccarp
closed
6 months ago
0
refactor: Update Gradle wrapper
#129
shanman190
closed
6 months ago
0
Remove nonexistent recipe from yaml
#128
Bananeweizen
closed
6 months ago
2
Owasp recipe refers to missing Spring recipe
#127
Bananeweizen
closed
6 months ago
1
Unable to find runtime dependencies beginning with: 'jakarta.servlet-api', 'spring-security-config'
#126
timtebeek
opened
7 months ago
0
`TraitErrors` on ` BeanDefinitionMethodGeneratorTests` with `XML parser XXE vulnerability`
#125
timtebeek
opened
7 months ago
5
refactor: remove expired suppressions
#124
zieka
closed
7 months ago
0
Configurable path traversal guard exception msg
#123
JLLeitschuh
closed
8 months ago
0
Generify ZipSlip Visitor
#122
JLLeitschuh
closed
8 months ago
0
refactor: OpenRewrite best practices
#121
timtebeek
closed
8 months ago
0
General Cleanup & Improvements
#120
JLLeitschuh
closed
8 months ago
0
org.openrewrite.java.security.spring.CsrfProtection generates deprecated WebSecurityConfigurerAdapter
#119
philippe-granet
opened
9 months ago
2
POC: `@NestedOptions` use case for Security Recipes
#118
JLLeitschuh
opened
10 months ago
0
refactor: Update Gradle wrapper to 8.5
#117
timtebeek
closed
10 months ago
0
Adopt FixCwe338
#116
timtebeek
closed
10 months ago
0
Issue discovered on `repository-hpi/src/main/java/com/nirima/jenkins/RepositoryPlugin.java` with `Zip slip`
#115
JLLeitschuh
opened
11 months ago
0
Issue discovered on `indexing-hadoop/src/main/java/org/apache/druid/indexer/JobHelper.java` with `Zip slip`
#114
JLLeitschuh
opened
11 months ago
0
CSRF is not SSRF
#113
JLLeitschuh
closed
8 months ago
0
Fix broken cross reference for Owasp A10 (#111)
#112
Bananeweizen
closed
11 months ago
0
Broken reference in OWASP Top 10 declaration
#111
Bananeweizen
closed
11 months ago
1
NoClassDefFoundError for AbstractRefasterJavaVisitor using rewrite-maven-plugin 5.8.1
#110
arburk
closed
11 months ago
4
java.lang.NoClassDefFoundError: org/openrewrite/java/internal/template/AbstractRefasterJavaVisitor
#109
nagkumar
closed
11 months ago
3
Add missing import in XmlParserXXEVulnerability
#108
Bananeweizen
closed
1 year ago
1
Missing import after XmlParserXXEVulnerability
#107
Bananeweizen
closed
1 year ago
0
added support for cases when one property was set but the rest weren't. Expand Entity References support still pending.
#106
Saumyanavani
closed
1 year ago
0
feat/SN/continueDBFPatch
#105
Saumyanavani
closed
1 year ago
0
feat/SN/continueDBFPatch
#104
Saumyanavani
closed
1 year ago
0
Add support for multiple XML factories per file
#103
aaronist
closed
1 year ago
0
Add XmlFactoryVariable and support for static class variables
#102
aaronist
closed
1 year ago
0
Additional abstraction of visitBlock and code cleanup
#101
aaronist
closed
1 year ago
0
Remove unnecessary argument in updateBlock
#100
aaronist
closed
1 year ago
0
Added support for cases where DTDs are required for DocumentBuilderFactory
#99
Saumyanavani
closed
1 year ago
0
Adding two abstract visitor classes for XXE vulnerabilities
#98
aaronist
closed
1 year ago
0
Add implementation for TransformerFactory XXE recipe
#97
aaronist
closed
1 year ago
5
Fix broken test and visitor due to upstream change
#96
JLLeitschuh
closed
1 year ago
0
fix: adapt J.Identifier instantiation to use the new constructor
#95
SimonVerhoeven
closed
1 year ago
1
Adding DBF Support for the XXE Recipe (WIP)
#94
Saumyanavani
closed
1 year ago
0
Next