Security Findings — stackedit
An automated scan of this repository using ansede-static found the following potential vulnerabilities:
Summary
| Severity |
Count |
| Critical |
1 |
| High |
1 |
Confirmed Findings
1. CWE-601: Open redirect via tainted variable at line 44
| Detail |
Value |
| Severity |
high |
| Confidence |
0.96 |
| File |
C:\Users\matth\OneDrive\Desktop\ansede-static-focus\tmp\clones\stackedit\server\index.js:44 |
| Rule |
JS-039 |
| CWE |
CWE-601 |
| Analysis |
syntax-ast |
Recommendation: N/A
2. CWE-95: Code injection via eval() at line 86
| Detail |
Value |
| Severity |
critical |
| Confidence |
1.00 |
| File |
C:\Users\matth\OneDrive\Desktop\ansede-static-focus\tmp\clones\stackedit\src\services\templateWorker.js:86 |
| Rule |
JS-004 |
| CWE |
CWE-95 |
| Analysis |
syntax-ast |
Recommendation: N/A
About ansede-static
ansede-static is a free, open-source, zero-dependency SAST engine scanning 8 languages (Python, JavaScript, TypeScript, Java, C#, Go, Ruby, PHP).
This is an automated responsible disclosure notification generated by ansede-static v2.3.0-dev.
Security Findings — stackedit
An automated scan of this repository using ansede-static found the following potential vulnerabilities:
Summary
Confirmed Findings
1. CWE-601: Open redirect via tainted variable at line 44
C:\Users\matth\OneDrive\Desktop\ansede-static-focus\tmp\clones\stackedit\server\index.js:44JS-039Recommendation: N/A
2. CWE-95: Code injection via eval() at line 86
C:\Users\matth\OneDrive\Desktop\ansede-static-focus\tmp\clones\stackedit\src\services\templateWorker.js:86JS-004Recommendation: N/A
About ansede-static
ansede-static is a free, open-source, zero-dependency SAST engine scanning 8 languages (Python, JavaScript, TypeScript, Java, C#, Go, Ruby, PHP).
pip install ansede-staticpip install ansede-static && ansede-static /path/to/repoThis is an automated responsible disclosure notification generated by ansede-static v2.3.0-dev.