Home > mailing lists

Re: [pgAdmin4][Patch]: SonarQube Vulnerabilities - Mailing list pgadmin-hackers

From	Dave Page
Subject	Re: [pgAdmin4][Patch]: SonarQube Vulnerabilities
Date	September 14, 2022 15:35:19
Msg-id	CA+OCxozk8=FunZp6fkfUaDT3+S5+K+1jT2OvY0mEG_o-6Lc_Bg@mail.gmail.com Whole thread Raw
In response to	[pgAdmin4][Patch]: SonarQube Vulnerabilities (Khushboo Vashi <khushboo.vashi@enterprisedb.com>)
List	pgadmin-hackers

Tree view

On Wed, 14 Sept 2022 at 05:38, Khushboo Vashi <khushboo.vashi@enterprisedb.com> wrote:

Hi,

I have tried to fix the vulnerabilities reported by SonarQube but it didn't work. So I added the verification of region_id (user defined input) as discussed in yesterday's meeting and am going to close these issues.

I've cleared the first two issues on SonarQube as it doesn't detect the validation. However, we also need to validate the volume type specified in the third.

Dave Page
Blog: https://pgsnake.blogspot.com
Twitter: @pgsnake

EDB: https://www.enterprisedb.com

pgadmin-hackers by date:

From: Akshay Joshi
Date: 14 September 2022, 13:07:30
Subject: Re: [pgAdmin 4][Patch]: #7314 - psycopg2 to psycopg3 migration

From: Aditya Toshniwal
Date: 15 September 2022, 08:37:42
Subject: [pgAdmin][RM7557] pgAdmin failed to start due to bin path migration

Re: [pgAdmin4][Patch]: SonarQube Vulnerabilities - Mailing list pgadmin-hackers

Previous

Next