Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Modify rule S5131: Add FastAPI (APPSEC-1250) #3386

Merged
merged 3 commits into from
Nov 6, 2023
Merged

Modify rule S5131: Add FastAPI (APPSEC-1250) #3386

merged 3 commits into from
Nov 6, 2023

Conversation

egon-okerman-sonarsource
Copy link
Contributor

Review

A dedicated reviewer checked the rule description successfully for:

  • logical errors and incorrect information
  • information gaps and missing content
  • text style and tone
  • PR summary and labels follow the guidelines

@daniel-teuchert-sonarsource daniel-teuchert-sonarsource mentioned this pull request Oct 31, 2023
Closed
4 tasks
@sonarqube-next
Copy link

Quality Gate passed Quality Gate passed for 'rspec-tools'

Kudos, no new issues are introduced in this PR!

0 New issues
0 Security Hotspots
No Coverage information No data about Coverage
No Duplication information No data about Duplication

See analysis details on SonarQube

@sonarqube-next
Copy link

Quality Gate passed Quality Gate passed for 'rspec-frontend'

Kudos, no new issues are introduced in this PR!

0 New issues
0 Security Hotspots
No Coverage information No data about Coverage
No Duplication information No data about Duplication

See analysis details on SonarQube

daniel-teuchert-sonarsource
daniel-teuchert-sonarsource requested changes Nov 2, 2023
View reviewed changes
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The list of content-types that allow for XSS is not consistent with the implementation ticket. I guess the list form the RSPEC needs to be updated.

@egon-okerman-sonarsource
Copy link
Contributor Author

(The RSPEC list of MIME types was not updated, instead the implementation ticket was changed to match the current RSPEC list.)

@egon-okerman-sonarsource egon-okerman-sonarsource merged commit 67d9172 into master Nov 6, 2023
11 checks passed
@egon-okerman-sonarsource egon-okerman-sonarsource deleted the rule/S5131/python/add-fastapi-appsec-1250 branch November 6, 2023 10:04
egon-okerman-sonarsource added a commit that referenced this pull request Nov 6, 2023
@egon-okerman-sonarsource
Revert "Modify rule S5131: Add FastAPI (APPSEC-1250) (#3386)"
c88a65c 
This reverts commit 67d9172.
@egon-okerman-sonarsource egon-okerman-sonarsource mentioned this pull request Nov 6, 2023
Merged
4 tasks
egon-okerman-sonarsource added a commit that referenced this pull request Nov 6, 2023
@egon-okerman-sonarsource
Revert "Modify rule S5131: Add FastAPI (APPSEC-1250) (#3386)"
474a031 
This reverts commit 67d9172.
@egon-okerman-sonarsource egon-okerman-sonarsource restored the rule/S5131/python/add-fastapi-appsec-1250 branch November 6, 2023 15:55
egon-okerman-sonarsource added a commit that referenced this pull request Nov 6, 2023
@egon-okerman-sonarsource
Modify rule S2092, S3330, S4830, S5131, S5144: Revert FastAPI changes (
6417c38 
…#3408)

The PRs #3365, #3374, #3386, #3391 and #3392 were merged before
implementation. This reverts them, to be merged only once implemented.

## Review

A dedicated reviewer checked the rule description successfully for:

- [ ] logical errors and incorrect information
- [ ] information gaps and missing content
- [ ] text style and tone
- [ ] PR summary and labels follow [the
guidelines](https://github.com/SonarSource/rspec/#to-modify-an-existing-rule)
@egon-okerman-sonarsource egon-okerman-sonarsource mentioned this pull request Nov 6, 2023
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@daniel-teuchert-sonarsource daniel-teuchert-sonarsource Awaiting requested review from daniel-teuchert-sonarsource

Assignees
No one assigned
Labels
appsec python
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@egon-okerman-sonarsource @daniel-teuchert-sonarsource