app/models/project.rb from khalilgharbaoui/check-taskmanager-back-end-api

app/models/project.rb

Summary

Maintainability

0 mins

Test Coverage

Issues
Source
Stats

Insufficient validation for 'start_date' using /\d{4}-\d{2}-\d{2}/. Use \A and \z as anchors
Open

  validates :start_date, format: { with: /\d{4}-\d{2}-\d{2}/,

Found in app/models/project.rb by brakeman

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Calls to validates_format_of ..., :with => // which do not use \A and \z as anchors will cause this warning. Using ^ and $ is not sufficient, as they will only match up to a new line. This allows an attacker to put whatever malicious input they would like before or after a new line character.

See the Ruby Security Guide for details.

khalilgharbaoui/check-taskmanager-back-end-api

Summary

Maintainability

Test Coverage

Insufficient validation for 'start_date' using /\d{4}-\d{2}-\d{2}/. Use \A and \z as anchors
Open

There are no issues that match your filters.

Category

Status

khalilgharbaoui/check-taskmanager-back-end-api

Summary

Maintainability

Test Coverage

Insufficient validation for 'start_date' using /\d{4}-\d{2}-\d{2}/. Use \A and \z as anchors Open

There are no issues that match your filters.

Category

Status

Insufficient validation for 'start_date' using /\d{4}-\d{2}-\d{2}/. Use \A and \z as anchors
Open