Check Logs Innovation Week 3 #5469

tmpayton · 2023-06-07T18:02:29Z

Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

Ref: [Check logs PI Innovation week 2]
(#5468)

(Note: Copy above links in a browser to view the metrics)

hcaofec · 2023-06-28T16:16:50Z

FEC-CMS: 0
package.json: None
requirements.txt: None

OPENFEC: 3
package.json: None
requirements.txt:
(High) flask Information Exposure #5440
(Medium) requests Information Exposure #5459

requirements-dev.txt:
setuptools Regular Expression Denial of Service (ReDoS) #5477

flyway 2:
(High) Denial of Service (DoS) #5482
(Low) Creation of Temporary File in Directory with Insecure Permissions
#5478

FEC-EREGS: 0
package.json: None
requirements.txt: None

FEC-PATTERN-LIBRARY:
package.json: None

Search logs:
User change: None

Cloud.gov Dashboard: 6 deployer accounts

Off-boarding: 0

Health check:
memory usage: ok
booting workers: ok

pkfec added the Security: general General security concern or issue label Jun 13, 2023

pkfec added this to the PI 21 innovation milestone Jun 13, 2023

pkfec assigned hcaofec Jun 13, 2023

hcaofec mentioned this issue Jun 28, 2023

Check Logs 22.1 Week 1 #5483

Closed

2 tasks

hcaofec closed this as completed Jun 28, 2023

Provide feedback