openrewrite rewrite-java-security issues

openrewrite / rewrite-java-security

OpenRewrite recipes for patching Java security vulnerabilities.

Apache License 2.0

17 stars 15 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

update suppressions for 09-25-2024 vulnerability report

#144 natedanner closed 3 days ago
0
refactor: Update Gradle wrapper

#143 shanman190 closed 1 week ago
0
suppress spring-data-mongodb coming in via rewrite-spring

#142 pstreef closed 3 weeks ago
0
refactor: Update Gradle wrapper

#141 shanman190 closed 3 weeks ago
0
Migrate to JSpecify from OpenRewrite JSR-305 meta-annotations

#140 jkschneider closed 1 month ago
0
Migrate to JSpecify from OpenRewrite JSR-305 meta-annotations

#139 jkschneider closed 1 month ago
0
Migrate from OpenRewrite JSR-305 meta-annotations to JSpecify

#138 jkschneider closed 1 month ago
0
refactor: Update Gradle wrapper

#137 shanman190 closed 1 month ago
0
Verify markers are placed on `Yaml.Sequence.Entry`, but not printed

#136 timtebeek opened 2 months ago
1
refactor: Update Gradle wrapper

#134 shanman190 closed 2 months ago
0
refactor: Update Gradle wrapper

#133 shanman190 closed 4 months ago
0
Remove Random import during SecureRandom recipe

#132 Bananeweizen closed 5 months ago
0
SecureRandom should have maybeRemoveImport("java.util.Random")

#131 Bananeweizen closed 5 months ago
0
refactor: Common static analysis issues

#130 kmccarp closed 6 months ago
0
refactor: Update Gradle wrapper

#129 shanman190 closed 6 months ago
0
Remove nonexistent recipe from yaml

#128 Bananeweizen closed 6 months ago
2
Owasp recipe refers to missing Spring recipe

#127 Bananeweizen closed 6 months ago
1
Unable to find runtime dependencies beginning with: 'jakarta.servlet-api', 'spring-security-config'

#126 timtebeek opened 7 months ago
0
`TraitErrors` on ` BeanDefinitionMethodGeneratorTests` with `XML parser XXE vulnerability`

#125 timtebeek opened 7 months ago
5
refactor: remove expired suppressions

#124 zieka closed 7 months ago
0
Configurable path traversal guard exception msg

#123 JLLeitschuh closed 8 months ago
0
Generify ZipSlip Visitor

#122 JLLeitschuh closed 8 months ago
0
refactor: OpenRewrite best practices

#121 timtebeek closed 8 months ago
0
General Cleanup & Improvements

#120 JLLeitschuh closed 8 months ago
0
org.openrewrite.java.security.spring.CsrfProtection generates deprecated WebSecurityConfigurerAdapter

#119 philippe-granet opened 9 months ago
2
POC: `@NestedOptions` use case for Security Recipes

#118 JLLeitschuh opened 10 months ago
0
refactor: Update Gradle wrapper to 8.5

#117 timtebeek closed 10 months ago
0
Adopt FixCwe338

#116 timtebeek closed 10 months ago
0
Issue discovered on `repository-hpi/src/main/java/com/nirima/jenkins/RepositoryPlugin.java` with `Zip slip`

#115 JLLeitschuh opened 11 months ago
0
Issue discovered on `indexing-hadoop/src/main/java/org/apache/druid/indexer/JobHelper.java` with `Zip slip`

#114 JLLeitschuh opened 11 months ago
0
CSRF is not SSRF

#113 JLLeitschuh closed 8 months ago
0
Fix broken cross reference for Owasp A10 (#111)

#112 Bananeweizen closed 11 months ago
0
Broken reference in OWASP Top 10 declaration

#111 Bananeweizen closed 11 months ago
1
NoClassDefFoundError for AbstractRefasterJavaVisitor using rewrite-maven-plugin 5.8.1

#110 arburk closed 11 months ago
4
java.lang.NoClassDefFoundError: org/openrewrite/java/internal/template/AbstractRefasterJavaVisitor

#109 nagkumar closed 11 months ago
3
Add missing import in XmlParserXXEVulnerability

#108 Bananeweizen closed 1 year ago
1
Missing import after XmlParserXXEVulnerability

#107 Bananeweizen closed 1 year ago
0
added support for cases when one property was set but the rest weren't. Expand Entity References support still pending.

#106 Saumyanavani closed 1 year ago
0
feat/SN/continueDBFPatch

#105 Saumyanavani closed 1 year ago
0
feat/SN/continueDBFPatch

#104 Saumyanavani closed 1 year ago
0
Add support for multiple XML factories per file

#103 aaronist closed 1 year ago
0
Add XmlFactoryVariable and support for static class variables

#102 aaronist closed 1 year ago
0
Additional abstraction of visitBlock and code cleanup

#101 aaronist closed 1 year ago
0
Remove unnecessary argument in updateBlock

#100 aaronist closed 1 year ago
0
Added support for cases where DTDs are required for DocumentBuilderFactory

#99 Saumyanavani closed 1 year ago
0
Adding two abstract visitor classes for XXE vulnerabilities

#98 aaronist closed 1 year ago
0
Add implementation for TransformerFactory XXE recipe

#97 aaronist closed 1 year ago
5
Fix broken test and visitor due to upstream change

#96 JLLeitschuh closed 1 year ago
0
fix: adapt J.Identifier instantiation to use the new constructor

#95 SimonVerhoeven closed 1 year ago
1
Adding DBF Support for the XXE Recipe (WIP)

#94 Saumyanavani closed 1 year ago
0