gitlabhq/gitlabhq

View on GitHub

Showing 3,330 of 3,330 total issues

CSRF vulnerability in OmniAuth's request phase
Open

    omniauth (1.9.0)
Severity: Critical
Found in Gemfile.lock by bundler-audit

Advisory: CVE-2015-9284

Criticality: High

URL: https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284

Solution: upgrade to >= 2.0.0

Class Project has 302 methods (exceeds 20 allowed). Consider refactoring.
Open

class Project < ApplicationRecord
  include Gitlab::ConfigHelper
  include Gitlab::VisibilityLevel
  include AccessRequestable
  include Avatarable
Severity: Major
Found in app/models/project.rb - About 6 days to fix

    File project.rb has 2020 lines of code (exceeds 250 allowed). Consider refactoring.
    Open

    require 'carrierwave/orm/activerecord'
    
    class Project < ApplicationRecord
      include Gitlab::ConfigHelper
      include Gitlab::VisibilityLevel
    Severity: Major
    Found in app/models/project.rb - About 5 days to fix

      Class User has 216 methods (exceeds 20 allowed). Consider refactoring.
      Open

      class User < ApplicationRecord
        extend Gitlab::ConfigHelper
      
        include Gitlab::ConfigHelper
        include Gitlab::SQL::Pattern
      Severity: Major
      Found in app/models/user.rb - About 4 days to fix

        Class MergeRequest has 188 methods (exceeds 20 allowed). Consider refactoring.
        Open

        class MergeRequest < ApplicationRecord
          include AtomicInternalId
          include IidRoutes
          include Issuable
          include Noteable
        Severity: Major
        Found in app/models/merge_request.rb - About 3 days to fix

          File user.rb has 1393 lines of code (exceeds 250 allowed). Consider refactoring.
          Open

          require 'carrierwave/orm/activerecord'
          
          class User < ApplicationRecord
            extend Gitlab::ConfigHelper
          
          
          Severity: Major
          Found in app/models/user.rb - About 3 days to fix

            File notes.js has 1273 lines of code (exceeds 250 allowed). Consider refactoring.
            Open

            /* eslint-disable no-restricted-properties, babel/camelcase,
            no-unused-expressions, default-case,
            consistent-return, no-alert, no-param-reassign,
            no-shadow, no-useless-escape,
            class-methods-use-this */
            Severity: Major
            Found in app/assets/javascripts/notes.js - About 3 days to fix

              File merge_request.rb has 1268 lines of code (exceeds 250 allowed). Consider refactoring.
              Open

              class MergeRequest < ApplicationRecord
                include AtomicInternalId
                include IidRoutes
                include Issuable
                include Noteable
              Severity: Major
              Found in app/models/merge_request.rb - About 3 days to fix

                Method services has 643 lines of code (exceeds 25 allowed). Consider refactoring.
                Open

                      def self.services
                        {
                          'alerts' => [],
                          'asana' => [
                            {
                Severity: Major
                Found in lib/api/helpers/services_helpers.rb - About 3 days to fix

                  Class Repository has 143 methods (exceeds 20 allowed). Consider refactoring.
                  Open

                  class Repository
                    REF_MERGE_REQUEST = 'merge-requests'
                    REF_KEEP_AROUND = 'keep-around'
                    REF_ENVIRONMENTS = 'environments'
                    REF_PIPELINES = 'pipelines'
                  Severity: Major
                  Found in app/models/repository.rb - About 2 days to fix

                    File solarized_dark.js has 1083 lines of code (exceeds 250 allowed). Consider refactoring.
                    Open

                    /*
                    
                    https://github.com/brijeshb42/monaco-themes/blob/master/themes/Solarized-dark.json
                    
                    The MIT License (MIT)
                    Severity: Major
                    Found in app/assets/javascripts/ide/lib/themes/solarized_dark.js - About 2 days to fix

                      File solarized_light.js has 1074 lines of code (exceeds 250 allowed). Consider refactoring.
                      Open

                      /*
                      
                      https://github.com/brijeshb42/monaco-themes/blob/master/themes/Solarized-dark.json
                      
                      The MIT License (MIT)
                      Severity: Major
                      Found in app/assets/javascripts/ide/lib/themes/solarized_light.js - About 2 days to fix

                        Class Pipeline has 129 methods (exceeds 20 allowed). Consider refactoring.
                        Open

                          class Pipeline < ApplicationRecord
                            extend Gitlab::Ci::Model
                            include Ci::HasStatus
                            include Importable
                            include AfterCommitQueue
                        Severity: Major
                        Found in app/models/ci/pipeline.rb - About 2 days to fix

                          Class Repository has 128 methods (exceeds 20 allowed). Consider refactoring.
                          Open

                              class Repository
                                include Gitlab::Git::RepositoryMirroring
                                include Gitlab::Git::WrapsGitalyErrors
                                include Gitlab::EncodingHelper
                                include Gitlab::Utils::StrongMemoize
                          Severity: Major
                          Found in lib/gitlab/git/repository.rb - About 2 days to fix

                            Class Build has 124 methods (exceeds 20 allowed). Consider refactoring.
                            Open

                              class Build < Ci::Processable
                                include Ci::Metadatable
                                include Ci::Contextable
                                include TokenAuthenticatable
                                include AfterCommitQueue
                            Severity: Major
                            Found in app/models/ci/build.rb - About 2 days to fix

                              File pipeline.rb has 888 lines of code (exceeds 250 allowed). Consider refactoring.
                              Open

                              module Ci
                                class Pipeline < ApplicationRecord
                                  extend Gitlab::Ci::Model
                                  include Ci::HasStatus
                                  include Importable
                              Severity: Major
                              Found in app/models/ci/pipeline.rb - About 2 days to fix

                                File repository.rb has 871 lines of code (exceeds 250 allowed). Consider refactoring.
                                Open

                                require 'securerandom'
                                
                                class Repository
                                  REF_MERGE_REQUEST = 'merge-requests'
                                  REF_KEEP_AROUND = 'keep-around'
                                Severity: Major
                                Found in app/models/repository.rb - About 2 days to fix

                                  File services_helpers.rb has 845 lines of code (exceeds 250 allowed). Consider refactoring.
                                  Open

                                  module API
                                    module Helpers
                                      # Helpers module for API::Services
                                      #
                                      # The data structures inside this model are returned using class methods,
                                  Severity: Major
                                  Found in lib/api/helpers/services_helpers.rb - About 2 days to fix

                                    File migration_helpers.rb has 839 lines of code (exceeds 250 allowed). Consider refactoring.
                                    Open

                                    module Gitlab
                                      module Database
                                        module MigrationHelpers
                                          include Migrations::BackgroundMigrationHelpers
                                    
                                    
                                    Severity: Major
                                    Found in lib/gitlab/database/migration_helpers.rb - About 2 days to fix

                                      File build.rb has 808 lines of code (exceeds 250 allowed). Consider refactoring.
                                      Open

                                      module Ci
                                        class Build < Ci::Processable
                                          include Ci::Metadatable
                                          include Ci::Contextable
                                          include TokenAuthenticatable
                                      Severity: Major
                                      Found in app/models/ci/build.rb - About 1 day to fix
                                        Severity
                                        Category
                                        Status
                                        Source
                                        Language