Skip to content

fix(http-to-string): remove ToString() overrides #98

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Dec 18, 2024
Merged

fix(http-to-string): remove ToString() overrides #98

merged 2 commits into from
Dec 18, 2024

Conversation

@hamzamahmood
Copy link
Collaborator

@hamzamahmood hamzamahmood commented Dec 17, 2024

What

  • Removed ToString() overrides from HttpContext, HttpRequest, and HttpResponse to prevent exposure of sensitive information.
  • Bump package System.Net.Http.Json in test project due to reported vulnerability

Why

ToString() overrides in HTTP-related classes (e.g., HttpContext, HttpRequest, HttpResponse) risk exposing sensitive information.

Closes #97

Type of change

Select multiple if applicable.

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause a breaking change)
  • Tests (adds or updates tests)
  • Documentation (adds or updates documentation)
  • Refactor (style improvements, performance improvements, code refactoring)
  • Revert (reverts a commit)
  • CI/Build (adds or updates a script, change in external dependencies)

@hamzamahmood
fix(http-to-string): remove ToString() overrides
8ea482b 
- Removed ToString() overrides from HttpContext, HttpRequest, and HttpResponse to prevent exposure of sensitive information.
- Bump package System.Net.Http.Json in test project due to reported vulnerability

Closes #97
@hamzamahmood hamzamahmood added the bug Something isn't working label Dec 17, 2024
@hamzamahmood hamzamahmood self-assigned this Dec 17, 2024
@sonarqubecloud
Copy link

sonarqubecloud bot commented Dec 17, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@hamzamahmood hamzamahmood merged commit 1814b1c into main Dec 18, 2024
14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@asadali214 asadali214 asadali214 approved these changes

Assignees

@hamzamahmood hamzamahmood

Labels

bug Something isn't working

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Prevent Sensitive Information in ToString() Overrides of HTTP Classes

3 participants

@hamzamahmood @asadali214