Skip to content

Remove and add gibberish entries in JSON #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
DanielOrge wants to merge 8 commits into
base: checks_for_queues2025
Choose a base branch
from
Open

Remove and add gibberish entries in JSON #7

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
c69fa41
Remove and add gibberish entries in JSON
DanielOrge Nov 4, 2025
ce26c19
add-requirements
heliocodacy Nov 4, 2025
987031a
Add CI/CD workflow configuration for main branch
DanielOrge Nov 6, 2025
4957d52
Update pipeline
heliocodacy Nov 6, 2025
b6e70c0
n/A
heliocodacy Nov 6, 2025
33eda70
fix paths on codacy.yml
heliocodacy Nov 6, 2025
ebe64ce
main branch is master...
heliocodacy Nov 6, 2025
e22510c
Merge branch 'master' into DanielOrge-patch-1
DMarinhoCodacy Nov 13, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 9 additions & 2 deletions .github/workflows/codacy.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,10 +3,17 @@ name: Client Side Tools and Coverage

on:
push:
branches: [ '*' ]
branches:
- master
Comment on lines +6 to +7
Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟡 MEDIUM RISK

Suggestion: Changing the push trigger from branches: [ '*' ] to branches: [ 'master' ] will prevent the workflow from running on pushes to other branches. If the intent is for pushes to feature branches to also trigger the workflow, this change might be too restrictive. Please clarify the intended behavior.

pull_request:
branches: [ '*' ]
workflow_dispatch:
paths:
- '*.json'
- '*.yaml'
merge_group:
types:
- checks_requested # this is the one that's isn't triggering Codacy analysis
Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

The comment # this is the one that's isn't triggering Codacy analysis indicates an issue with the merge_group trigger. If merge_group is intended to trigger Codacy analysis, this problem needs to be investigated and resolved to ensure proper continuous integration for merge queue workflows.



jobs:
build:
Expand Down
3 changes: 3 additions & 0 deletions python/requirements.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
flask==1.0.2
Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/flask@1.0.2 (CVE-2023-30861: flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header) (update to 2.2.5)

The issue identified by the Trivy linter pertains to a security vulnerability in Flask version 1.0.2, specifically CVE-2023-30861. This vulnerability could potentially allow for the disclosure of a permanent session cookie due to the absence of a Vary: Cookie header. This could lead to session hijacking or other security risks if the application is not properly secured against such attacks.

To mitigate this vulnerability, it is recommended to upgrade Flask to a more secure version, as suggested by the linter. The recommended version is 2.2.5, which includes the necessary security fixes.

Here is the code suggestion to fix the issue:

Suggested change
flask==1.0.2
flask==2.2.5

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Flask version 1.0.2 has a high-severity vulnerability (CVE-2023-30861) related to a possible disclosure of a permanent session cookie. Update to a secure version (e.g., 2.2.5 or newer).

This might be a simple fix:

Suggested change
flask==1.0.2
flask==2.2.5

See Issue in Codacy

django==1.11.29
Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-64458: Django: Denial-of-service vulnerability in Django on Windows) (update to 4.2.26)

The issue identified by the Trivy linter pertains to a denial-of-service vulnerability in Django version 1.11.29, which can be exploited on Windows systems. This vulnerability is documented under CVE-2025-64458 and poses a risk to applications using this version of Django. To mitigate this security risk, it is recommended to upgrade to a more recent, secure version of Django, specifically version 4.2.26 or later.

To address this vulnerability, you can update the Django version in your requirements file with the following code suggestion:

Suggested change
django==1.11.29
django==4.2.26

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-57833: django: Django SQL injection in FilteredRelation column aliases) (update to 4.2.24)

The issue identified by Trivy relates to a security vulnerability in Django version 1.11.29, specifically a SQL injection vulnerability associated with FilteredRelation column aliases (CVE-2025-57833). This vulnerability could potentially allow an attacker to manipulate SQL queries and gain unauthorized access to the database or sensitive data.

To mitigate this security risk, it is recommended to upgrade Django to a secure version, as suggested by Trivy. The recommended version is 4.2.24, which addresses the vulnerability.

Here’s the code suggestion to update the Django version:

Suggested change
django==1.11.29
django==4.2.24

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2024-45231: python-django: Potential user email enumeration via response status on password reset) (update to 4.2.16)

The issue identified by Trivy is a security vulnerability in the specified version of Django (1.11.29). The vulnerability, listed under CVE-2024-45231, relates to a potential user email enumeration issue that can occur during the password reset process. This could allow an attacker to determine whether a specific email address is registered in the system based on the response status from the server, thereby compromising user privacy.

To mitigate this vulnerability, it is recommended to upgrade Django to a more secure version, specifically to 4.2.16 or later, which contains the necessary patches to address this issue.

Here’s the code suggestion to fix the issue by updating the Django version:

Suggested change
django==1.11.29
django==4.2.16

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2021-33203: django: Potential directory traversal via admindocs) (update to 2.2.24)

The issue identified by Trivy relates to a security vulnerability in Django version 1.11.29, specifically CVE-2021-33203. This vulnerability allows for potential directory traversal through the admindocs feature, which could lead to unauthorized access to sensitive files on the server. It is recommended to update to a more secure version of Django to mitigate this risk.

To resolve this issue, you should update the Django version to at least 2.2.24, which addresses the vulnerability. Here’s the code suggestion to make that change:

Suggested change
django==1.11.29
django==2.2.24

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Codacy found a critical Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-64459: django: Django SQL injection) (update to 4.2.26)

The issue identified by the Trivy linter pertains to a security vulnerability in the Django version specified in your dependencies. Specifically, the version 1.11.29 is affected by a SQL injection vulnerability (CVE-2025-64459). This means that if your application uses this version of Django, it could be susceptible to attacks that exploit this vulnerability, potentially allowing an attacker to execute arbitrary SQL code against your database.

To mitigate this security risk, it is recommended to upgrade to a more secure version of Django. The suggested version provided by the linter is 4.2.26, which presumably has addressed the vulnerabilities present in earlier versions.

Here’s the single line change you should make to your dependency list:

Suggested change
django==1.11.29
django==4.2.26

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-48432: django: Django Path Injection Vulnerability) (update to 4.2.22)

The issue identified by the Trivy linter is a security vulnerability in Django version 1.11.29, specifically a Path Injection Vulnerability (CVE-2025-48432). This vulnerability could allow an attacker to manipulate file paths, potentially leading to unauthorized access to sensitive files or directories within the application. Since Django 1.11 is an older version and no longer actively maintained, it is crucial to upgrade to a more recent and secure version.

To resolve this issue, you should update the Django dependency to a safe and supported version, such as 4.2.22. This will help mitigate the security risk associated with the identified vulnerability.

Here is the suggested code change:

Suggested change
django==1.11.29
django==4.2.22

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2022-36359: An issue was discovered in the HTTP FileResponse class in Django 3.2 b ...) (update to 3.2.15)

The issue reported by the Trivy linter indicates that the version of Django specified in your requirements (django==1.11.29) is vulnerable to a security issue identified by CVE-2022-36359. This vulnerability affects the HTTP FileResponse class in Django and could potentially allow an attacker to exploit the application in certain scenarios. The recommended action is to update Django to a more secure version, specifically to 3.2.15 or later.

To fix this issue, you should update the version of Django in your requirements file. Here’s the single line change you can make:

Suggested change
django==1.11.29
django==3.2.15

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity issue (CVE-2022-36359) in the HTTP FileResponse class. Update to a secure version (e.g., 3.2.15 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==3.2.15

See Issue in Codacy

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity denial-of-service vulnerability (CVE-2025-64458) on Windows. Update to a secure version (e.g., 4.2.26 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.26

See Issue in Codacy

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity SQL injection vulnerability (CVE-2025-57833). Update to a secure version (e.g., 4.2.24 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.24

See Issue in Codacy

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a critical-severity SQL injection vulnerability (CVE-2025-64459). Update to a secure version (e.g., 4.2.26 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.26

See Issue in Codacy

requests==2.19.1
Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2024-35195: requests: subsequent requests to the same host ignore cert verification) (update to 2.32.0)

The issue identified by the Trivy linter is related to a security vulnerability in the requests library version 2.19.1, specifically CVE-2024-35195. This vulnerability allows subsequent requests to the same host to ignore certificate verification, which can expose applications to man-in-the-middle attacks and other security risks.

To mitigate this security issue, you should update the requests library to a version that has fixed the vulnerability. The recommended version is 2.32.0 or higher.

Here is the code suggestion to fix the issue:

Suggested change
requests==2.19.1
requests==2.32.0

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2024-47081: requests: Requests vulnerable to .netrc credentials leak via malicious URLs) (update to 2.32.4)

The issue identified by the Trivy linter is a security vulnerability in the requests library version 2.19.1. Specifically, it relates to a potential leak of .netrc credentials when handling malicious URLs, which could allow an attacker to access sensitive information. This vulnerability is documented under CVE-2024-47081. To mitigate this risk, it's recommended to update the requests library to a secure version, specifically version 2.32.4 or later.

To fix the issue, you should update the version of the requests library in your requirements file. Here’s the suggested change:

Suggested change
requests==2.19.1
requests==2.32.4

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2023-32681: python-requests: Unintended leak of Proxy-Authorization header) (update to 2.31.0)

The issue identified by the Trivy linter is a security vulnerability in the requests library version 2.19.1. Specifically, it relates to CVE-2023-32681, which describes an unintended leak of the Proxy-Authorization header. This vulnerability could potentially expose sensitive information if an application using this version of the requests library interacts with a proxy server.

To resolve this issue, you should update the version of the requests library to a secure version that does not contain this vulnerability. The recommended version to upgrade to is 2.31.0.

Here's the code suggestion to fix the issue:

Suggested change
requests==2.19.1
requests==2.31.0

This comment was generated by an experimental AI tool.

Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Requests version 2.19.1 has a high-severity vulnerability (CVE-2018-18074) related to Authorization header leakage on HTTPS to HTTP redirects. Update to a secure version (e.g., 2.20.0 or newer).

This might be a simple fix:

Suggested change
requests==2.19.1
requests==2.20.0

See Issue in Codacy

1 change: 1 addition & 0 deletions whaddayamean.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
}

Check failure on line 1 in whaddayamean.json

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

whaddayamean.json#L1 

Unexpected close marker '}': no open Object to close
- gibberish
- more gibberish
- extra gibberish
{
Comment on lines 1 to 5
Copy link

@codacy-production codacy-production bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

The whaddayamean.json file is not valid JSON. JSON objects should start with { and end with }. The current structure (} then {) and the unquoted gibberish entries will cause parsing errors. If this file is meant to be JSON, it needs to be properly formatted. If it's not JSON, its purpose should be clarified.