Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / albfernandez/GDS-PMD-Security-Rules issues and pull requests

#59 - Bump tomcat-catalina from 8.5.9 to 8.5.86

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#58 - Provide column info for violations

Issue - State: closed - Opened by albfernandez over 1 year ago

#57 - Add sinks for Jakarta EE 10

Issue - State: closed - Opened by albfernandez about 2 years ago

#56 - Duplicate invalid rules for sink

Issue - State: closed - Opened by albfernandez about 2 years ago

#55 - Bump tomcat-catalina from 8.0.24 to 8.5.9

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies

#54 - Bump esapi from 2.1.0.1 to 2.3.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies

#53 - Allow to annotate with Sink on Constructor

Issue - State: closed - Opened by albfernandez almost 3 years ago

#52 - Bump tomcat-embed-core from 8.5.61 to 8.5.63

Pull Request - State: closed - Opened by dependabot[bot] over 3 years ago
Labels: dependencies

#51 - Bump tomcat-embed-core from 8.5.55 to 8.5.61

Pull Request - State: closed - Opened by dependabot[bot] over 3 years ago
Labels: dependencies

#50 - update license

Issue - State: closed - Opened by albfernandez almost 4 years ago

#49 - DFA to be removed in PMD 7

Issue - State: open - Opened by albfernandez almost 4 years ago

#48 - Bump junit from 4.12 to 4.13.1

Pull Request - State: closed - Opened by dependabot[bot] almost 4 years ago
Labels: dependencies

#47 - Bump tomcat-embed-core from 8.0.24 to 8.5.55

Pull Request - State: closed - Opened by dependabot[bot] almost 4 years ago
Labels: dependencies

#46 - False negative in conditional statements

Issue - State: closed - Opened by albfernandez over 4 years ago

#45 - Replace findbugs-maven-plugin with spotbugs

Issue - State: closed - Opened by albfernandez over 4 years ago

#44 - configure more sanitizers by default

Issue - State: closed - Opened by albfernandez almost 6 years ago

#43 - Sanitizers not recognized if imported via wildcard (*)

Issue - State: closed - Opened by albfernandez almost 6 years ago

#39 - CWE-246: J2EE Bad Practices: Direct Use of Sockets

Issue - State: open - Opened by albfernandez over 6 years ago

#37 - CWE-111: Direct Use of Unsafe JNI

Issue - State: closed - Opened by albfernandez over 6 years ago - 1 comment

#34 - Reference vulnerabilites by CWE instead OWASP

Issue - State: closed - Opened by albfernandez over 6 years ago

#33 - Upgrade to PMD 6

Issue - State: closed - Opened by albfernandez over 6 years ago

#32 - Add Automatic-Module-Name to Manifest

Issue - State: closed - Opened by albfernandez almost 7 years ago

#31 - false negative writing to response.outputStream

Issue - State: open - Opened by albfernandez almost 7 years ago

#30 - False negative using getter for connection

Issue - State: open - Opened by albfernandez almost 7 years ago

#29 - upgrade to pmd 5.8.0

Issue - State: closed - Opened by albfernandez over 7 years ago

#28 - False negative after some catch

Issue - State: closed - Opened by albfernandez over 7 years ago

#27 - update README

Issue - State: open - Opened by albfernandez over 7 years ago

#26 - release with dependency pmd 5.3.8

Issue - State: closed - Opened by albfernandez over 7 years ago

#25 - Make max-dataflows configurable

Issue - State: closed - Opened by albfernandez over 8 years ago

#24 - Annotations

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#23 - Include tests for JPA Injection

Issue - State: closed - Opened by albfernandez about 9 years ago
Labels: enhancement

#22 - Include project version in manifest

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#21 - Code cleanup

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#20 - Pmd5 java7

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#19 - Refactor of tests samples, call for test using a file instead a

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#18 - timeout for the test

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#17 - Tests

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#16 - Enables HTTPResponseSplitting rule

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#15 - updated readme

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#14 - Basic tests fro all rules

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#13 - Release version 2.0.0

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#12 - release version 2.0.0

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#11 - Doesn't initializa classes on loading to prevent errors

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#10 - jar

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#9 - Use java 7 by default

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#8 - Include tests for simple sql injection detection

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#7 - Convert to maven project: missing resources

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#6 - Convert to maven project

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#5 - Improve detection of function call return types to use safeTypes

Pull Request - State: closed - Opened by albfernandez about 9 years ago

#4 - Code cleanup

Pull Request - State: closed - Opened by albfernandez over 9 years ago

#3 - updated readme

Pull Request - State: closed - Opened by albfernandez over 9 years ago

#2 - Refactor of configuration, updated to OWASP top 10 2013

Pull Request - State: closed - Opened by albfernandez over 9 years ago

#1 - Pmd5 java7

Pull Request - State: closed - Opened by albfernandez over 9 years ago