Details

    • Type: Task
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: SERVER 5.0.0
    • Component/s: None
    • Labels:
      None
    • Template:
    • Acceptance Criteria:
      Hide

      The scans should be able to identify any usage of read-string w/ or w/o qualifiers of clojure.core. Should not generate any false positives.

      Show
      The scans should be able to identify any usage of read-string w/ or w/o qualifiers of clojure.core. Should not generate any false positives.
    • Team:
      Systems Engineering
    • Story Points:
      1
    • Sprint:
      Perf&Sec 2017-05-31, Perf&Sec 2017-06-14
    • Release Notes:
      Not Needed
    • QA Risk Assessment:
      Needs Assessment

      Description

      The capability to do some basic security code scanning, as developed in the parent ticket now, needs to be enabled on various Clojure projects. This needs to be done in piecemeal manner to allow some testing and prevent wide scale issues, if any.
      Code scanning would be enabled on following Clojure projects:

      • Classifier
      • PCP-Broker
      • PE-RBAC-Service
      • pe-console-service

        Attachments

          Activity

            jsd-sla-details-panel

              People

              • Assignee:
                jayant.sane Jayant Sane
                Reporter:
                jayant.sane Jayant Sane
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: