Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

#335 Removing deprecated fields #337

Merged
merged 3 commits into from
Oct 18, 2021
Merged

#335 Removing deprecated fields #337

merged 3 commits into from
Oct 18, 2021

Conversation

Monoradioactivo
Copy link
Contributor

No description provided.

preetkaran20
preetkaran20 reviewed Oct 16, 2021
View reviewed changes
src/main/java/org/sasanlabs/service/vulnerability/jwt/JWTVulnerability.java Outdated
@@ -298,23 +286,20 @@ public JWTVulnerability(IJWTTokenGenerator libBasedJWTGenerator, IJWTValidator j
vulnerabilityExposed = VulnerabilityType.CLIENT_SIDE_VULNERABLE_JWT,
description = "COOKIE_WITH_HTTPONLY_WITHOUT_SECURE_FLAG_BASED_JWT_VULNERABILITY")
@AttackVector(
vulnerabilityExposed = {VulnerabilityType.SERVER_SIDE_VULNERABLE_JWT},
description = "COOKIE_BASED_NULL_BYTE_JWT_VULNERABILITY")
vulnerabilityExposed = VulnerabilityType.INSECURE_CONFIGURATION_JWT,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Monoradioactivo can you please fix the ordering of the methods?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Level4 and Level5 are i think swapped.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

preetkaran20
preetkaran20 requested changes Oct 16, 2021
View reviewed changes
Copy link
Member

@preetkaran20 preetkaran20 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the PR. Overall, it looks good to me.

  1. Please remove all these label keys from messages.properties and messages_en_us.properties files in src/main/resource/i18n
  2. Please rebase the changes as they are having changes from previous commit.
  3. Please comment on the github issue linked with this PR, that you are working on it.

preetkaran20
preetkaran20 reviewed Oct 16, 2021
View reviewed changes
src/main/resources/static/templates/SampleVulnerability/LEVEL_1/SampleVulnerability.css
@@ -0,0 +1,16 @@
#SampleVulnerability {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

these changes are from previous commit.

@preetkaran20
Copy link
Member

Hi @Monoradioactivo ,

Can you please run: Run './gradlew spotlessApply' and push the commit again for fixing indentation failure

Thanks,
Karan

@Monoradioactivo
Copy link
Contributor Author

Hi @Monoradioactivo ,

Can you please run: Run './gradlew spotlessApply' and push the commit again for fixing indentation failure

Thanks, Karan

Done

@preetkaran20
Copy link
Member

Hi @Monoradioactivo ,

Thanks a lot for the PR. Merging it.

thanks,
Karan

@preetkaran20 preetkaran20 merged commit 1453323 into SasanLabs:master Oct 18, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@preetkaran20 preetkaran20 preetkaran20 requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Monoradioactivo @preetkaran20