Fix Sast Vulnerabilities(AST-64185) #321

miryamfoiferCX · 2024-08-20T09:58:38Z

Make sure you are opening from a topic/feature/bugfix branch (right side) and not your main branch!
Ensure that the pull request title represents the desired changelog entry
Please describe what you did
Link to relevant issues in GitHub or Jira
Link to relevant pull requests, esp. upstream and downstream changes
Ensure you have provided tests - that demonstrates feature works or fixes the issue

github-actions · 2024-08-20T10:02:55Z

Checkmarx One – Scan Summary & Details – e26d63f1-65c2-420d-bf07-a10d6a42db90

Policy Name	Rule(s)	Break Build
[SAST-ML0] Not allowed NEW Sast vulnerabilities		true

Severity	Issue	Source File / Package
	Unpinned Actions Full Length Commit SHA	/ci.yml: 40
	Unpinned Actions Full Length Commit SHA	/manual-tag.yml: 23
	Unpinned Actions Full Length Commit SHA	/release.yml: 42
	Unpinned Actions Full Length Commit SHA	/release.yml: 53
	Unpinned Actions Full Length Commit SHA	/cd.yml: 24
	Unpinned Actions Full Length Commit SHA	/cd.yml: 17
	Unpinned Actions Full Length Commit SHA	/cd.yml: 55
	Unpinned Actions Full Length Commit SHA	/cd.yml: 34

miryamfoiferCX · 2024-09-10T10:04:13Z

creating a new PR

sast fix - 1

e5ce59c

miryamfoiferCX added 8 commits August 20, 2024 14:04

sast fix - 2

130f12b

fix compilation issues

c3b9d92

Merge branch 'main' into miryamFoifer/FixSastVulnerabilitiesAST-64185

d14d98a

revert using of env var

ef875ad

fix spotBug

ecd6d90

fix spotBug 2

1200024

fix spotBug 3

7b9f882

remove comments and adding thresholds

bf0373e

miryamfoiferCX closed this Sep 10, 2024

Provide feedback