soc-pe-bot
commented
1 year ago Team's Response
Problem is caused by extreme user behaviour and deliberate sabotage as it is unlikely that a normal user can accidentally enter such a large filter value.
Items for the Tester to Verify
:question: Issue response
Team chose [response.Rejected]
- [x] I disagree
Reason for disagreement: This behaviour is still incorrect as the comparison amount is not a non negative integer. If "extreme user behaviour" and "deliberate sabotage" are not expected, then what is the point of the application having input validation in the first place? Catching typos is clearly not the intended purpose of input validation, since there are infinitely many typos that cannot be caught be the application's simplistic input validation.
The filter command states that the COMPARISON_AMOUNT must be a non negative integer, but entering a non negative integer for filter (999999999999999999999999999999999999999) results in an error being displayed.