Skip to content

Exclude injection alerts where the input data type is not String #115

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 12 commits into from
Jan 16, 2025
Merged

Exclude injection alerts where the input data type is not String #115

merged 12 commits into from
Jan 16, 2025

Conversation

@mbaluda
Copy link
Contributor

@mbaluda mbaluda commented Apr 25, 2024
edited by jeongsoolee09
Loading

Add an FP test case where the user payload is not of built-in type String. The log injection query should not alert on the sink in this case.

github-advanced-security[bot]
github-advanced-security bot found potential problems Nov 19, 2024
View reviewed changes
...script/frameworks/cap/test/queries/loginjection/log-injection-type-sanitized/srv/service.cds
@@ -0,0 +1,11 @@
using { advanced_security.log_injection.sample_entities as db_schema } from '../db/schema';

service Service @(path: '/service') {

Check warning

Code scanning / CodeQL

Entity exposed without authentication Medium test

The CDS service Service is exposed without any authentication.
...script/frameworks/cap/test/queries/loginjection/log-injection-type-sanitized/srv/service.cds

service Service @(path: '/service') {
/* Entity to send READ/GET about. */
entity ServiceEntity as projection on db_schema.Entity2 excluding { Attribute4 }

Check warning

Code scanning / CodeQL

Entity exposed without authentication Medium test

The CDS entity Service.ServiceEntity is exposed without any authentication.
...script/frameworks/cap/test/queries/loginjection/log-injection-type-sanitized/srv/service.cds
entity ServiceEntity as projection on db_schema.Entity2 excluding { Attribute4 }

/* API to talk to Service. */
action send (

Check warning

Code scanning / CodeQL

Entity exposed without authentication Medium test

The CDS action Service.send is exposed without any authentication.
@jeongsoolee09 jeongsoolee09 marked this pull request as ready for review January 7, 2025 01:02
@jeongsoolee09 jeongsoolee09 requested a review from lcartey January 7, 2025 01:02
@jeongsoolee09 jeongsoolee09 self-assigned this Jan 7, 2025
lcartey
lcartey approved these changes Jan 16, 2025
View reviewed changes
Copy link
Contributor

@lcartey lcartey left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, thanks!

@lcartey lcartey merged commit df92915 into main Jan 16, 2025
5 checks passed
@lcartey lcartey deleted the mbaluda/type_sanitizer branch January 16, 2025 10:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@data-douser data-douser Awaiting requested review from data-douser

1 more reviewer

@lcartey lcartey lcartey approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@jeongsoolee09 jeongsoolee09

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mbaluda @lcartey @jeongsoolee09