Hakiri found a Ruby on Rails project with 71 production gems in the repo. The project has a total of 7 security warnings (2 in code and 5 in dependencies). Here is the breakdown of security warnings by type:
Attribute Restrictionno warnings |
Authenticationno warnings |
Buffer Errorsno warnings |
Code Injectionno warnings |
Command Injectionno warnings |
Configurationno warnings |
Credentials Managementno warnings |
Cross-Site Request Forgeryno warnings |
Cross-Site Scriptingno warnings |
Cryptographyno warnings |
Dangerous Evaluationno warnings |
Dangerous Sendno warnings |
Default Routesno warnings |
Denial of Serviceno warnings |
Dynamic Render Pathno warnings |
File Access3 warnings |
Format Stringno warnings |
Format Validationno warnings |
Information Disclosureno warnings |
Input Validationno warnings |
Link Followingno warnings |
Mass Assignment1 warning |
Numeric Errorsno warnings |
OS Command Injectionsno warnings |
Perms and Access Control1 warning |
Race Conditionsno warnings |
Redirectno warnings |
Resource Managementno warnings |
Session Setting1 warning |
SSL Verification Bypassno warnings |
SQL Injection1 warning |
Unsafe Deserializationno warnings |
Otherno warnings |