Showing 91 of 95 total issues
Possible shell escape sequence injection vulnerability in Rack Open
rack (2.0.3)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
TZInfo relative path traversal vulnerability allows loading of arbitrary files Open
tzinfo (1.2.3)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
Denial of service via header parsing in Rack Open
rack (2.0.3)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
Moderate severity vulnerability that affects nokogiri Open
nokogiri (1.8.1)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
Method calculate_burndown
has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring. Open
def calculate_burndown(metric) values = 0 for i in 0..(metric.length - 1) if metric[i] <= 10 || metric[i] >= 200
- Read upRead up
- Create a ticketCreate a ticket
Loofah 2.1.1 is vulnerable (CVE-2018-8048). Upgrade to 2.1.2 Open
loofah (2.1.1)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
rails-html-sanitizer 1.0.3 is vulnerable (CVE-2018-3741). Upgrade to 1.0.4 Open
rails-html-sanitizer (1.0.3)
- Read upRead up
- Create a ticketCreate a ticket
- Exclude checks
Method validate_stories
has a Cognitive Complexity of 6 (exceeds 5 allowed). Consider refactoring. Open
def validate_stories(story_points, id, sprint_id) current_user verifies_id(id, sprint_id, "sprint") release project
- Read upRead up
- Create a ticketCreate a ticket
Method request_github_token
has a Cognitive Complexity of 6 (exceeds 5 allowed). Consider refactoring. Open
def request_github_token code_token = params[:code] result = RestClient.post( "https://github.com/login/oauth/access_token",
- Read upRead up
- Create a ticketCreate a ticket
Similar blocks of code found in 2 locations. Consider refactoring. Open
def validate_grade(id, grade_id) current_user verifies_id(id, grade_id, "grade") project_grade user
- Read upRead up
- Create a ticketCreate a ticket
Similar blocks of code found in 2 locations. Consider refactoring. Open
def validate_release(id, release_id) current_user verifies_id(id, release_id, "release") project user
- Read upRead up
- Create a ticketCreate a ticket