Skip to content

Commit

Permalink
Add security documentation
Browse files Browse the repository at this point in the history
  • Loading branch information
@JakeWnuk
JakeWnuk committed May 12, 2024
1 parent ec2d8dd commit caf90f8
Show file tree
Hide file tree
Showing 2 changed files with 28 additions and 0 deletions.
2 changes: 2 additions & 0 deletions docs/SECURITY/SECURITY.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
# Security Documentation for Password Transformation Tool (PTT)
- No additional notes.
26 changes: 26 additions & 0 deletions docs/SECURITY/semgrep-scan.txt
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@


┌────────────────┐
│ 1 Code Finding │
└────────────────┘

 main.go
❯❱ trailofbits.go.iterate-over-empty-map.iterate-over-empty-map
Iteration over a possibly empty map `modes`. This is likely a bug or redundant code
Details: https://sg.run/08jj

41┆ modes := map[string]string{
42┆ "append": "Transforms input into append rules.",
43┆ "append-remove": "Transforms input into append-remove rules.",
44┆ "append-shift": "Transforms input into append-shift rules.",
45┆ "prepend": "Transforms input into prepend rules.",
46┆ "prepend-remove": "Transforms input into prepend-remove rules.",
47┆ "prepend-shift": "Transforms input into prepend-shift rules.",
48┆ "insert -i [index]": "Transforms input into insert rules starting at
index.",
49┆ "overwrite -i [index]": "Transforms input into overwrite rules starting at
index.",
50┆ "toggle -i [index]": "Transforms input into toggle rules starting at
index.",
[hid 18 additional lines, adjust with --max-lines-per-finding]

0 comments on commit caf90f8

Please sign in to comment.