Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[GSOC23] - C - Implement a StAX parser for OVAL files #7510

Open
wants to merge 8 commits into
base: master
Choose a base branch
from

Parse and sync OVAL definitions in bulk

07266bb
Select commit
Loading
Failed to load commit list.
Open

[GSOC23] - C - Implement a StAX parser for OVAL files #7510

Parse and sync OVAL definitions in bulk
07266bb
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / SonarCloud failed Oct 8, 2024 in 6s

2 new alerts including 2 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 2 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 104 in java/code/src/com/suse/oval/parser/OvalParser.java

See this annotation in the file changed.

Code scanning / SonarCloud

XML parsers should not be vulnerable to XXE attacks High

Disable access to external entities in XML parsing. See more on SonarCloud

Check failure on line 161 in java/code/src/com/suse/oval/parser/OvalParser.java

See this annotation in the file changed.

Code scanning / SonarCloud

XML parsers should not be vulnerable to XXE attacks High

Disable access to external entities in XML parsing. See more on SonarCloud