Add DevSecOps7 demo page with intentionally vulnerable code for GHAS detection#113
Add DevSecOps7 demo page with intentionally vulnerable code for GHAS detection#113Copilot wants to merge 2 commits into
11 new alerts including 5 high severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 5 high
Other Alerts:
- 1 warning
- 5 notes
See annotations below for details.
Annotations
Check failure on line 31 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 40 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Denial of Service from comparison of user input against expensive regex High
Check failure on line 41 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 46 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Log entries created from user input High
Check failure on line 52 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Insecure SQL connection High
Check warning on line 78 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Useless assignment to local variable Warning
Check notice on line 30 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 37 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Inefficient use of ContainsKey Note
Check notice on line 47 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 59 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note
Check notice on line 102 in src/webapp01/Pages/DevSecOps7.cshtml.cs
Code scanning / CodeQL
Generic catch clause Note