Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create mitre-file.py #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Create mitre-file.py #5

wants to merge 1 commit into from

Conversation

ayala-orca
Copy link
Owner

No description provided.

orca-security-orcadevroi[bot]
orca-security-orcadevroi bot reviewed Sep 12, 2024
View reviewed changes
Copy link

@orca-security-orcadevroi orca-security-orcadevroi bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Orca Security Scan Summary

Status Check Issues by priority
Failed Failed Semgrep high 2   medium 7   low 0   info 0 View in Orca
Failed Failed bandit high 2   medium 1   low 1   info 0 View in Orca
Passed Passed Secrets high 0   medium 0   low 0   info 0 View in Orca
🛡️ The following IaC misconfigurations have been detected
NAME FILE
high Semgrep Finding: python.jwt.security.jwt-hardcode.jwt-python-hardcoded-secret mitre-file.py View in code
high Semgrep Finding: python.lang.security.audit.subprocess-shell-true.subprocess-shell-true mitre-file.py View in code
medium Semgrep Finding: python.lang.security.audit.md5-used-as-password.md5-used-as-password mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.secure-cookies.django-secure-set-cookie mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
medium Semgrep Finding: python.django.security.injection.code.user-eval.user-eval mitre-file.py View in code
medium Semgrep Finding: python.lang.security.audit.eval-detected.eval-detected mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
🛡️ The following IaC misconfigurations have been detected
NAME FILE
high B324: hashlib ./mitre-file.py View in code
high B602: subprocess_popen_with_shell_equals_true ./mitre-file.py View in code
medium B307: blacklist ./mitre-file.py View in code
low B404: blacklist ./mitre-file.py View in code

@ayala-orca ayala-orca closed this Sep 12, 2024
@ayala-orca ayala-orca reopened this Sep 12, 2024
orca-security-orcadevroi[bot]
orca-security-orcadevroi bot reviewed Sep 12, 2024
View reviewed changes
Copy link

@orca-security-orcadevroi orca-security-orcadevroi bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Orca Security Scan Summary

Status Check Issues by priority
Failed Failed Semgrep high 2   medium 7   low 0   info 0 View in Orca
Failed Failed Bandit high 2   medium 1   low 1   info 0 View in Orca
Passed Passed Secrets high 0   medium 0   low 0   info 0 View in Orca
🛡️ The following IaC misconfigurations have been detected
NAME FILE
high Semgrep Finding: python.jwt.security.jwt-hardcode.jwt-python-hardcoded-secret mitre-file.py View in code
high Semgrep Finding: python.lang.security.audit.subprocess-shell-true.subprocess-shell-true mitre-file.py View in code
medium Semgrep Finding: python.lang.security.audit.md5-used-as-password.md5-used-as-password mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.secure-cookies.django-secure-set-cookie mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
medium Semgrep Finding: python.django.security.injection.code.user-eval.user-eval mitre-file.py View in code
medium Semgrep Finding: python.lang.security.audit.eval-detected.eval-detected mitre-file.py View in code
medium Semgrep Finding: python.django.security.audit.csrf-exempt.no-csrf-exempt mitre-file.py View in code
🛡️ The following IaC misconfigurations have been detected
NAME FILE
high B324: hashlib mitre-file.py View in code
high B602: subprocess_popen_with_shell_equals_true mitre-file.py View in code
medium B307: blacklist mitre-file.py View in code
low B404: blacklist mitre-file.py View in code

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@orca-security-orcadevroi orca-security-orcadevroi[bot] orca-security-orcadevroi[bot] left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ayala-orca