I got this:
│ ├─ java.security.ssrf: 33 errors [CWE-918]
│ │ └─ Potential server-side request forgery (SSRF)
│ ├─ java.security.xss-in-spring-app: 15 errors [CWE-79]
│ │ └─ Potential cross-site scripting (XSS)
│ ├─ java.security.csrf-disabled-in-spring-app: 1 warning [CWE-352]
│ │ └─ CSRF protection is disabled for this configuration
│ ├─ java.security.stacktrace-printing-in-error-message: 1 warning [CWE-209]
│ │ └─ Information exposure through an error message
│ └─ java.security.log-injection: 194 notes [CWE-117]
│ └─ Logging an untrusted data might cause unwanted log entries forging
most of it has severity "note", so a lot of garbage which I do not to look at, at least at first!
Add filters by severity to seqra summary
I got this:
most of it has severity "note", so a lot of garbage which I do not to look at, at least at first!
Add filters by severity to
seqra summary