Create laravel.yml #350

Hosampor · 2025-03-11T21:11:07Z

No description provided.

sstephanou-bc · 2025-03-11T21:16:32Z

Checkmarx One – Scan Summary & Details – 94f8f73f-8a50-4eda-92fb-6e809e2ec956

New Issues (11)

Checkmarx found the following issues in this Pull Request

Issue	Source File / Package	Checkmarx Insight
CVE-2021-0341	Maven-com.squareup.okhttp3:okhttp-3.14.7	details Recommended version: 4.9.2 Description: In "verifyHostName" method of "OkHostnameVerifier.java", there is a possible way to accept a certificate for the wrong domain due to improperly use... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2021-0341	Maven-com.squareup.okhttp3:okhttp-4.2.2	details Recommended version: 4.9.2 Description: In "verifyHostName" method of "OkHostnameVerifier.java", there is a possible way to accept a certificate for the wrong domain due to improperly use... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2023-2976	Maven-com.google.guava:guava-20.0	details Recommended version: 32.0.0.jre-redhat-00001 Description: Use of Java's default temporary directory for file creation in `FileBackedOutputStream` in Google Guava versions 1.0 through 31.1-jre on Unix syste... Attack Vector: LOCAL Attack Complexity: LOW Vulnerable Package
CVE-2024-45338	Go-golang.org/x/net-v0.0.0-20190108225652-1e06a53dbb7e	details Recommended version: v0.25.1-0.20250304182835-b70a9e3eaa27 Description: An attacker can craft an input to the "Parse" function, that will be processed non-linearly with respect to its length, resulting in extremely slow... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
Cxdfe95b9f-ea87	Maven-org.jetbrains.kotlin:kotlin-compiler-embeddable-1.3.61	details Recommended version: 1.7.0 Description: Kotlin is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability ... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2018-10237	Maven-com.google.guava:guava-20.0	details Recommended version: 32.0.0.jre-redhat-00001 Description: Unbounded memory allocation in Google Guava 11.0 through 24.x before 24.1.1 allows remote attackers to conduct denial of service attacks against se... Attack Vector: NETWORK Attack Complexity: HIGH Vulnerable Package
CVE-2019-11404	Maven-io.arrow-kt:arrow-core-0.7.1	details Recommended version: 0.10.0 Description: arrow-kt Arrow before 0.9.0 resolved Gradle build artifacts (for compiling and building the published JARs) over HTTP instead of HTTPS. Any of thes... Attack Vector: NETWORK Attack Complexity: HIGH Vulnerable Package
CVE-2020-29582	Maven-org.jetbrains.kotlin:kotlin-scripting-jvm-1.3.61	details Recommended version: 1.4.21 Description: In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder creation. An attacker was able to read data from su... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2020-29582	Maven-org.jetbrains.kotlin:kotlin-compiler-embeddable-1.3.61	details Recommended version: 1.7.0 Description: In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder creation. An attacker was able to read data from su... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2022-24329	Maven-org.jetbrains.kotlin:kotlin-stdlib-1.3.61	details Recommended version: 1.6.0 Description: In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects. Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
CVE-2020-8908	Maven-com.google.guava:guava-20.0	details Recommended version: 32.0.0.jre-redhat-00001 Description: A temp directory creation vulnerability exist in Guava versions prior to 30.0 allowing an attacker with access to the machine to potentially access... Attack Vector: LOCAL Attack Complexity: LOW Vulnerable Package

Fixed Issues (1447)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 743
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 235
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 482
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1431
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 545
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 323
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 399
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 577
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 545
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 437
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1133
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 100
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 141
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 313
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 521
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1273
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 254
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 417
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 428
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 1040
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 96
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1435
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 428
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1120
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 974
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 100
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 577
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 63
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 750
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 807
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1120
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 358
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 313
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 482
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1129
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1435
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1113
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1113
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 917
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 929
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1273
	~~Array Without Maximum Number of Items (v3)~~	/specification.yaml: 1036
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 521
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 1431
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 322
	~~Array Without Maximum Number of Items (v3)~~	/openapi.yaml: 344
	~~CVE-2024-45296~~	Npm-path-to-regexp-1.8.0
	~~Cx89601373-08db~~	Npm-debug-3.2.7
	~~Cx89601373-08db~~	Npm-debug-3.1.0
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 130
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 107
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 58
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 87
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 107
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 29
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 58
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 68
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 88
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 105
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 150
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 130
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 130
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 179
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 52
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 151
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 151
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 105
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 68
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 87
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 129
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/specification.yaml: 48
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 91
	~~Security Field On Operations Has An Empty Object Definition (v3)~~	/openapi.yaml: 179
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1205
	~~Additional Properties Too Permissive~~	/specification.yaml: 897
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1124
	~~Additional Properties Too Permissive~~	/openapi.yaml: 972
	~~Additional Properties Too Permissive~~	/openapi.yaml: 651
	~~Additional Properties Too Permissive~~	/openapi.yaml: 710
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1165
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1246
	~~Additional Properties Too Permissive~~	/specification.yaml: 909
	~~Additional Properties Too Permissive~~	/specification.yaml: 691
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1387
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1408
	~~Additional Properties Too Permissive~~	/openapi.yaml: 932
	~~Additional Properties Too Permissive~~	/openapi.yaml: 875
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1124
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1246
	~~Additional Properties Too Permissive~~	/specification.yaml: 1031
	~~Additional Properties Too Permissive~~	/openapi.yaml: 915
	~~Additional Properties Too Permissive~~	/openapi.yaml: 811
	~~Additional Properties Too Permissive~~	/openapi.yaml: 795
	~~Additional Properties Too Permissive~~	/openapi.yaml: 934
	~~Additional Properties Too Permissive~~	/specification.yaml: 1014
	~~Additional Properties Too Permissive~~	/openapi.yaml: 992
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1080
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1408
	~~Additional Properties Too Permissive~~	/specification.yaml: 812
	~~Additional Properties Too Permissive~~	/specification.yaml: 869
	~~Additional Properties Too Permissive~~	/openapi.yaml: 862
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1278
	~~Additional Properties Too Permissive~~	/openapi.yaml: 901
	~~Additional Properties Too Permissive~~	/openapi.yaml: 759
	~~Additional Properties Too Permissive~~	/specification.yaml: 546
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1106
	~~Additional Properties Too Permissive~~	/openapi.yaml: 932
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1231
	~~Additional Properties Too Permissive~~	/openapi.yaml: 583
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1231
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1278
	~~Additional Properties Too Permissive~~	/specification.yaml: 728
	~~Additional Properties Too Permissive~~	/openapi.yaml: 979
	~~Additional Properties Too Permissive~~	/specification.yaml: 881
	~~Additional Properties Too Permissive~~	/specification.yaml: 784
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1205
	~~Additional Properties Too Permissive~~	/openapi.yaml: 811
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1188
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1387
	~~Additional Properties Too Permissive~~	/openapi.yaml: 992
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1080
	~~Additional Properties Too Permissive~~	/openapi.yaml: 759
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1088
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1188
	~~Additional Properties Too Permissive~~	/specification.yaml: 934
	~~Additional Properties Too Permissive~~	/openapi.yaml: 754
	~~Additional Properties Too Permissive~~	/openapi.yaml: 840
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1271
	~~Additional Properties Too Permissive~~	/openapi.yaml: 823
	~~Additional Properties Too Permissive~~	/specification.yaml: 583
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1165
	~~Additional Properties Too Permissive~~	/specification.yaml: 845
	~~Additional Properties Too Permissive~~	/openapi.yaml: 1271
	~~Additional Properties Too Permissive~~	/specification.yaml: 926
	~~Default Response Undefined On Operations (v3)~~	/specification.yaml: 73
	~~Default Response Undefined On Operations (v3)~~	/specification.yaml: 91
	~~Default Response Undefined On Operations (v3)~~	/openapi.yaml: 253

More results are available on the CxOne platform

Create laravel.yml

73f3dfc

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Create laravel.yml #350

Create laravel.yml #350

Hosampor commented Mar 11, 2025

sstephanou-bc commented Mar 11, 2025

Create laravel.yml #350

Are you sure you want to change the base?

Create laravel.yml #350

Conversation

Hosampor commented Mar 11, 2025

sstephanou-bc commented Mar 11, 2025