80 lines
2.1 KiB
JSON
80 lines
2.1 KiB
JSON
{
|
|
"version": "15.0.0",
|
|
"vulnerabilities": [
|
|
{
|
|
"id": "1",
|
|
"category": "sast",
|
|
"name": "Cipher with no integrity",
|
|
"message": "Cipher with no integrity",
|
|
"cve": "groovy/src/main/java/com/gitlab/security_products/tests/App.groovy:29:CIPHER_INTEGRITY",
|
|
"severity": "Medium",
|
|
"confidence": "High",
|
|
"scanner": {
|
|
"id": "find_sec_bugs",
|
|
"name": "Find Security Bugs"
|
|
},
|
|
"location": {
|
|
"file": "groovy/src/main/java/com/gitlab/security_products/tests/App.groovy",
|
|
"start_line": 29,
|
|
"end_line": 29,
|
|
"class": "com.gitlab.security_products.tests.App",
|
|
"method": "insecureCypher"
|
|
},
|
|
"identifiers": [
|
|
{
|
|
"type": "find_sec_bugs_type",
|
|
"name": "Find Security Bugs-CIPHER_INTEGRITY",
|
|
"value": "CIPHER_INTEGRITY",
|
|
"url": "https://find-sec-bugs.github.io/bugs.htm#CIPHER_INTEGRITY"
|
|
}
|
|
],
|
|
"tracking": {
|
|
"type": "source",
|
|
"items": [
|
|
{
|
|
"file": "groovy/src/main/java/com/gitlab/security_products/tests/App.groovy",
|
|
"start_line": 29,
|
|
"end_line": 29,
|
|
"signatures": [
|
|
{
|
|
"algorithm": "hash",
|
|
"value": "HASHVALUE"
|
|
},
|
|
{
|
|
"algorithm": "scope_offset",
|
|
"value": "groovy/src/main/java/com/gitlab/security_products/tests/App.groovy:App[0]:insecureCypher[0]:2"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"remediations": [
|
|
|
|
],
|
|
"scan": {
|
|
"analyzer": {
|
|
"id": "find_sec_bugs_analyzer",
|
|
"name": "Find Security Bugs Analyzer",
|
|
"url": "https://gitlab.com",
|
|
"vendor": {
|
|
"name": "GitLab"
|
|
},
|
|
"version": "1.0.0"
|
|
},
|
|
"scanner": {
|
|
"id": "find_sec_bugs",
|
|
"name": "Find Security Bugs",
|
|
"url": "https://spotbugs.github.io",
|
|
"vendor": {
|
|
"name": "GitLab"
|
|
},
|
|
"version": "4.0.2"
|
|
},
|
|
"type": "sast",
|
|
"status": "success",
|
|
"start_time": "2022-08-10T21:37:00",
|
|
"end_time": "2022-08-10T21:38:00"
|
|
}
|
|
}
|