Skip to content

Vulnerabilities Dashboard - Go #1

Open
Open
Vulnerabilities Dashboard - Go#1
@nullify-josh

Description

@nullify-josh
nullify-josh
bot
opened on Dec 12, 2023

3 Potential vulnerability sources found in Go files within this repo

⚠️ CRITICAL 🔴 HIGH 🔵 MEDIUM ⚪ LOW
0 0 3 0

Nullify Code - Go 🔵 MEDIUM Severity CWE-676

Use of net/http serve function that has no support for setting timeouts

Use of net/http serve function that has no support for setting timeouts
Read more:
https://cwe.mitre.org/data/definitions/676.html

webhooks/_examples/single-handler/main.go

Line 38 in 69430a8

http.ListenAndServe(":3000", nil)

Nullify Code - Go 🔵 MEDIUM Severity CWE-676

Use of net/http serve function that has no support for setting timeouts

Use of net/http serve function that has no support for setting timeouts
Read more:
https://cwe.mitre.org/data/definitions/676.html

webhooks/_examples/multiple-handlers/main.go

Line 61 in 69430a8

http.ListenAndServe(":3000", nil)

Nullify Code - Go 🔵 MEDIUM Severity CWE-327

Blocklisted import crypto/sha1: weak cryptographic primitive

Blocklisted import crypto/sha1: weak cryptographic primitive
Read more:
https://cwe.mitre.org/data/definitions/327.html

webhooks/github/github.go

Line 5 in 69430a8

"crypto/sha1"

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions