This repository has been archived by the owner on Oct 2, 2024. It is now read-only.
Static Code Analysis - volur-v1-backend #35
Annotations
1 error and 1 warning
Veracode Pipeline-Scan
[05 Mar 2024 12:05:39,0733] PIPELINE-SCAN INFO: Pipeline Scan Tool Version 23.11.0-0.
[05 Mar 2024 12:05:39,0737] PIPELINE-SCAN INFO: Getting resource policy Veracode Recommended Medium + SCA
[05 Mar 2024 12:05:39,0769] PIPELINE-SCAN INFO: Successfully retrieved the policy
[05 Mar 2024 12:05:39,0769] PIPELINE-SCAN INFO: Policy name: Veracode Recommended Medium + SCA
[05 Mar 2024 12:05:39,0770] PIPELINE-SCAN INFO: CWE filter:
[05 Mar 2024 12:05:39,0770] PIPELINE-SCAN INFO: Severity filter: 4, 5,
[05 Mar 2024 12:05:39,0771] PIPELINE-SCAN INFO: Beginning scanning of './veracode_artifact_directory/veracode.zip'.
[05 Mar 2024 12:05:39,0772] PIPELINE-SCAN INFO: Sending 4273656 bytes to the server for analysis.
[05 Mar 2024 12:05:45,0244] PIPELINE-SCAN INFO: Upload complete.
[05 Mar 2024 12:05:45,0244] PIPELINE-SCAN INFO: Scan ID: 6f39201a-512c-4ba9-a7bf-f8297cce275a
[05 Mar 2024 12:05:45,0900] PIPELINE-SCAN INFO: Analysis Started.
===========================
Found 1 Scannable modules.
===========================
JS files within veracode.zip
[05 Mar 2024 12:06:26,0773] PIPELINE-SCAN INFO: Analysis Complete.
[05 Mar 2024 12:06:26,0775] PIPELINE-SCAN INFO: Analysis Results: Received 13425 bytes in 47004ms.
[05 Mar 2024 12:06:26,0779] PIPELINE-SCAN INFO: Writing Raw JSON Results to file '/home/runner/work/veracode/veracode/results.json'.
[05 Mar 2024 12:06:26,0783] PIPELINE-SCAN INFO: Writing Filtered JSON Results to file '/home/runner/work/veracode/veracode/filtered_results.json'.
Scan Summary:
PIPELINE_SCAN_VERSION: 23.11.0-0
DEV-STAGE: DEVELOPMENT
SCAN_ID: 6f39201a-512c-4ba9-a7bf-f8297cce275a
SCAN_STATUS: SUCCESS
SCAN_MESSAGE: Scan successful. Results size: 12897 bytes
====================
Analysis Successful.
====================
==========================
Found 1 Scannable modules.
==========================
JS files within veracode.zip
===================
Analyzed 1 modules.
===================
JS files within veracode.zip
==================
Analyzed 7 issues.
==================
--------------------------------
Found 1 issues of High severity.
--------------------------------
CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'): src/sandbox/SnowflakeMock.ts:52
-------------------------------------
Skipping 4 issues of Medium severity.
-------------------------------------
----------------------------------
Skipping 2 issues of Low severity.
----------------------------------
========================
FAILURE: Found 1 issues!
========================
|
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/download-artifact@v3, veracode/Veracode-pipeline-scan-action@v1.0.10. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
Loading