Check Logs 22.1 Week 1

[hcaofec]

Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)

Ref: [Check Logs Innovation Week 3]
(#5469)

• Check booting workers
• Check memory usage

(Note: Copy above links in a browser to view the metrics)

[pkfec]

FEC-CMS: 1
package.json: None
requirements.txt: 1
[Snyk High] (Django Regular Expression Denial of Service)[https://github.com/fecgov/fec-cms/issues/5791]

OPENFEC: 3
package.json: None

requirements.txt: 2
[Snyk High] (flask Information Exposure) [https://github.com//issues/5440]
[Snyk Medium] (requests Information Exposure) [https://github.com//issues/5459]

requirements-dev.txt: 1
[Snyk Medium] (Setuptools Regular Expression Denial of Service)[https://github.com//issues/5477]

FLYWAY: 2
[Snyk High] (Denial of Service)[https://github.com//issues/5482]
[Snyk Low] (Creation of Temporary File in Directory with Insecure Permissions[https://github.com//issues/5478]

FEC-EREGS: 1
package.json: None
requirements.txt: 1
[Snyk High] (Django Regular Expression Denial of Service)[https://github.com/fecgov/fec-eregs/issues/773]

FEC-PATTERN-LIBRARY:
package.json: None

Search logs:
User change: None

Cloud.gov Dashboard: 6 deployer accounts

Off-boarding: 0

Health check:
memory usage: ok
booting workers: ok