Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter
Open

    def posts
      csv = parse_csv_file('posts.csv')

      csv.each do |row|
        unless row['wp_post_type'] == 'post' && row['wp_post_status'] == 'publish'

Found in lib/import.rb - About 1 hr to fix

Read up
Read up

Cognitive Complexity

Cognitive Complexity is a measure of how difficult a unit of code is to intuitively understand. Unlike Cyclomatic Complexity, which determines how difficult your code will be to test, Cognitive Complexity tells you how difficult your code will be to read and comprehend.

A method's cognitive complexity is based on a few simple rules:

Code is not considered more complex when it uses shorthand that the language provides for collapsing multiple statements into one
Code is considered more complex for each "break in the linear flow of the code"
Code is considered more complex when "flow breaking structures are nested"

Duplicated Code

Duplicated code can lead to software that is hard to understand and difficult to change. The Don't Repeat Yourself (DRY) principle states:

Every piece of knowledge must have a single, unambiguous, authoritative representation within a system.

When you violate DRY, bugs and maintenance problems are sure to follow. Duplicated code has a tendency to both continue to replicate and also to diverge (leaving bugs as two similar implementations differ in subtle ways).

Tuning

This issue has a mass of 47.

We set useful threshold defaults for the languages we support but you may want to adjust these settings based on your project guidelines.

The threshold configuration represents the minimum mass a code block must have to be analyzed for duplication. The lower the threshold, the more fine-grained the comparison.

If the engine is too easily reporting duplication, try raising the threshold. If you suspect that the engine isn't catching enough duplication, try lowering the threshold. The best setting tends to differ from language to language.

See codeclimate-duplication's documentation for more information about tuning the mass threshold in your .codeclimate.yml.

Refactorings

Duplicated Code

Duplicated code can lead to software that is hard to understand and difficult to change. The Don't Repeat Yourself (DRY) principle states:

Every piece of knowledge must have a single, unambiguous, authoritative representation within a system.

When you violate DRY, bugs and maintenance problems are sure to follow. Duplicated code has a tendency to both continue to replicate and also to diverge (leaving bugs as two similar implementations differ in subtle ways).

Tuning

This issue has a mass of 47.

We set useful threshold defaults for the languages we support but you may want to adjust these settings based on your project guidelines.

The threshold configuration represents the minimum mass a code block must have to be analyzed for duplication. The lower the threshold, the more fine-grained the comparison.

If the engine is too easily reporting duplication, try raising the threshold. If you suspect that the engine isn't catching enough duplication, try lowering the threshold. The best setting tends to differ from language to language.

See codeclimate-duplication's documentation for more information about tuning the mass threshold in your .codeclimate.yml.

moonleerecords/moonlee-website

Showing 211 of 211 total issues

Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter
Open

Devise Gem for Ruby confirmation token validation with a blank string
Open

Inefficient Regular Expression Complexity in Loofah
Open

Update packaged dependency libxml2 from 2.9.10 to 2.9.12
Open

ReDoS based DoS vulnerability in Active Support’s underscore
Open

Server side request forgery in gibbon
Open

Improper Handling of Unexpected Data Type in Nokogiri
Open

Method `posts` has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring.
Open

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Method has too many lines. [12/10]
Open

Method `posts` has 42 lines of code (exceeds 25 allowed). Consider refactoring.
Open

Identical blocks of code found in 2 locations. Consider refactoring.
Open

Duplicated Code

Tuning

Refactorings

Further Reading

Identical blocks of code found in 2 locations. Consider refactoring.
Open

Duplicated Code

Tuning

Refactorings

Further Reading

Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
Open

Regular Expression Denial of Service in websocket-extensions (RubyGem)
Open

Broken Access Control vulnerability in Active Job
Open

Prototype pollution attack through jQuery $.extend
Open

libxml2 2.9.10 has an infinite loop in a certain end-of-file situation
Open

Nokogiri Command Injection Vulnerability via Nokogiri::CSS::Tokenizer#load_file
Open

Denial of Service Vulnerability in Rack Content-Disposition parsing
Open

File Content Disclosure in Action View
Open

Severity

Category

Status

Source

Language

moonleerecords/moonlee-website

Showing 211 of 211 total issues

Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter Open

Devise Gem for Ruby confirmation token validation with a blank string Open

Inefficient Regular Expression Complexity in Loofah Open

Update packaged dependency libxml2 from 2.9.10 to 2.9.12 Open

ReDoS based DoS vulnerability in Active Support’s underscore Open

Server side request forgery in gibbon Open

Improper Handling of Unexpected Data Type in Nokogiri Open

Method posts has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring. Open

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Method has too many lines. [12/10] Open

Method posts has 42 lines of code (exceeds 25 allowed). Consider refactoring. Open

Identical blocks of code found in 2 locations. Consider refactoring. Open

Duplicated Code

Tuning

Refactorings

Further Reading

Identical blocks of code found in 2 locations. Consider refactoring. Open

Duplicated Code

Tuning

Refactorings

Further Reading

Nokogiri gem, via libxslt, is affected by multiple vulnerabilities Open

Regular Expression Denial of Service in websocket-extensions (RubyGem) Open

Broken Access Control vulnerability in Active Job Open

Prototype pollution attack through jQuery $.extend Open

libxml2 2.9.10 has an infinite loop in a certain end-of-file situation Open

Nokogiri Command Injection Vulnerability via Nokogiri::CSS::Tokenizer#load_file Open

Denial of Service Vulnerability in Rack Content-Disposition parsing Open

File Content Disclosure in Action View Open

Severity

Category

Status

Source

Language

Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter
Open

Devise Gem for Ruby confirmation token validation with a blank string
Open

Inefficient Regular Expression Complexity in Loofah
Open

Update packaged dependency libxml2 from 2.9.10 to 2.9.12
Open

ReDoS based DoS vulnerability in Active Support’s underscore
Open

Server side request forgery in gibbon
Open

Improper Handling of Unexpected Data Type in Nokogiri
Open

Method `posts` has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring.
Open

Method has too many lines. [12/10]
Open

Method `posts` has 42 lines of code (exceeds 25 allowed). Consider refactoring.
Open

Identical blocks of code found in 2 locations. Consider refactoring.
Open

Identical blocks of code found in 2 locations. Consider refactoring.
Open

Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
Open

Regular Expression Denial of Service in websocket-extensions (RubyGem)
Open

Broken Access Control vulnerability in Active Job
Open

Prototype pollution attack through jQuery $.extend
Open

libxml2 2.9.10 has an infinite loop in a certain end-of-file situation
Open

Nokogiri Command Injection Vulnerability via Nokogiri::CSS::Tokenizer#load_file
Open

Denial of Service Vulnerability in Rack Content-Disposition parsing
Open

File Content Disclosure in Action View
Open