a96a5db — master — discourse/discourse

Hakiri found a Ruby on Rails project with 93 production gems in the repo. The project has a total of 292 security warnings (289 in code and 3 in dependencies). Here is the breakdown of security warnings by type:

Attribute Restriction 161 warnings	Authentication no warnings	Buffer Errors no warnings	Code Injection no warnings
Command Injection no warnings	Configuration no warnings	Credentials Management no warnings	Cross-Site Request Forgery 3 warnings
Cross-Site Scripting 25 warnings	Cryptography no warnings	Dangerous Evaluation no warnings	Dangerous Send 3 warnings
Default Routes no warnings	Denial of Service 1 warning	Dynamic Render Path 1 warning	File Access 10 warnings
Format String no warnings	Format Validation no warnings	Information Disclosure no warnings	Input Validation no warnings
Link Following no warnings	Mass Assignment 48 warnings	Numeric Errors no warnings	OS Command Injections no warnings
Perms and Access Control no warnings	Race Conditions no warnings	Redirect 11 warnings	Resource Management no warnings
Session Setting no warnings	SSL Verification Bypass no warnings	SQL Injection 29 warnings	Unsafe Deserialization no warnings
Other no warnings