Skip to content

Remove and add gibberish entries in JSON #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
DanielOrge wants to merge 9 commits into
base: checks_for_queues2025
Choose a base branch
from
Open

Remove and add gibberish entries in JSON #7

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
c69fa41
Remove and add gibberish entries in JSON
DanielOrge Nov 4, 2025
ce26c19
add-requirements
heliocodacy Nov 4, 2025
987031a
Add CI/CD workflow configuration for main branch
DanielOrge Nov 6, 2025
4957d52
Update pipeline
heliocodacy Nov 6, 2025
b6e70c0
n/A
heliocodacy Nov 6, 2025
33eda70
fix paths on codacy.yml
heliocodacy Nov 6, 2025
ebe64ce
main branch is master...
heliocodacy Nov 6, 2025
e22510c
Merge branch 'master' into DanielOrge-patch-1
DMarinhoCodacy Nov 13, 2025
de6dc08
Merge branch 'checks_for_queues2025' into DanielOrge-patch-1
heliocodacy Apr 17, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 9 additions & 2 deletions .github/workflows/codacy.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,10 +3,17 @@ name: Client Side Tools and Coverage

on:
push:
branches: [ '*' ]
branches:
- master
Comment on lines +6 to +7
Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟡 MEDIUM RISK

Suggestion: Changing the push trigger from branches: [ '*' ] to branches: [ 'master' ] will prevent the workflow from running on pushes to other branches. If the intent is for pushes to feature branches to also trigger the workflow, this change might be too restrictive. Please clarify the intended behavior.

pull_request:
branches: [ '*' ]
workflow_dispatch:
paths:
- '*.json'
- '*.yaml'
Comment on lines +11 to +12
Copy link
Copy Markdown

@codacy-production codacy-production Bot Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟡 MEDIUM RISK

Restricting the pull request trigger to only .json and .yaml files prevents this workflow from running when Python source code is modified. Since this workflow executes pytest, it should include **/*.py in the paths or remove the path restriction entirely to ensure code changes are validated.

merge_group:
types:
- checks_requested # this is the one that's isn't triggering Codacy analysis
Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

The comment # this is the one that's isn't triggering Codacy analysis indicates an issue with the merge_group trigger. If merge_group is intended to trigger Codacy analysis, this problem needs to be investigated and resolved to ensure proper continuous integration for merge queue workflows.



jobs:
build:
Expand Down
3 changes: 3 additions & 0 deletions python/requirements.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
flask==1.0.2

Check warning on line 1 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L1 

Insecure dependency pypi/flask@1.0.2 (CVE-2023-30861: flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header) (update to 2.2.5)

Check notice on line 1 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L1 

Insecure dependency pypi/flask@1.0.2 (CVE-2026-27205: flask: Flask: Information disclosure via improper caching of session data) (update to 3.1.3)
Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/flask@1.0.2 (CVE-2023-30861: flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header) (update to 2.2.5)

The issue identified by the Trivy linter pertains to a security vulnerability in Flask version 1.0.2, specifically CVE-2023-30861. This vulnerability could potentially allow for the disclosure of a permanent session cookie due to the absence of a Vary: Cookie header. This could lead to session hijacking or other security risks if the application is not properly secured against such attacks.

To mitigate this vulnerability, it is recommended to upgrade Flask to a more secure version, as suggested by the linter. The recommended version is 2.2.5, which includes the necessary security fixes.

Here is the code suggestion to fix the issue:

Suggested change
flask==1.0.2
flask==2.2.5

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Flask version 1.0.2 has a high-severity vulnerability (CVE-2023-30861) related to a possible disclosure of a permanent session cookie. Update to a secure version (e.g., 2.2.5 or newer).

This might be a simple fix:

Suggested change
flask==1.0.2
flask==2.2.5

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Flask 1.0.2 is outdated and contains a high-severity vulnerability (CVE-2023-30861) that could disclose permanent session cookies. Upgrade to version 3.1.3 or later.

Suggested change
flask==1.0.2
flask==3.1.3

django==1.11.29

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2021-33203: django: Potential directory traversal via ``admindocs``) (update to 2.2.24)

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2022-36359: An issue was discovered in the HTTP FileResponse class in Django 3.2 b ...) (update to 3.2.15)

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2024-45231: python-django: Potential user email enumeration via response status on password reset) (update to 4.2.16)

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2025-48432: django: Django Path Injection Vulnerability) (update to 4.2.22)

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2025-57833: django: Django SQL injection in FilteredRelation column aliases) (update to 4.2.24)

Check warning on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2025-64458: Django: Denial-of-service vulnerability in Django on Windows) (update to 4.2.26)

Check failure on line 2 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L2 

Insecure dependency pypi/django@1.11.29 (CVE-2025-64459: django: Django SQL injection) (update to 4.2.26)
Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-64458: Django: Denial-of-service vulnerability in Django on Windows) (update to 4.2.26)

The issue identified by the Trivy linter pertains to a denial-of-service vulnerability in Django version 1.11.29, which can be exploited on Windows systems. This vulnerability is documented under CVE-2025-64458 and poses a risk to applications using this version of Django. To mitigate this security risk, it is recommended to upgrade to a more recent, secure version of Django, specifically version 4.2.26 or later.

To address this vulnerability, you can update the Django version in your requirements file with the following code suggestion:

Suggested change
django==1.11.29
django==4.2.26

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-57833: django: Django SQL injection in FilteredRelation column aliases) (update to 4.2.24)

The issue identified by Trivy relates to a security vulnerability in Django version 1.11.29, specifically a SQL injection vulnerability associated with FilteredRelation column aliases (CVE-2025-57833). This vulnerability could potentially allow an attacker to manipulate SQL queries and gain unauthorized access to the database or sensitive data.

To mitigate this security risk, it is recommended to upgrade Django to a secure version, as suggested by Trivy. The recommended version is 4.2.24, which addresses the vulnerability.

Here’s the code suggestion to update the Django version:

Suggested change
django==1.11.29
django==4.2.24

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2024-45231: python-django: Potential user email enumeration via response status on password reset) (update to 4.2.16)

The issue identified by Trivy is a security vulnerability in the specified version of Django (1.11.29). The vulnerability, listed under CVE-2024-45231, relates to a potential user email enumeration issue that can occur during the password reset process. This could allow an attacker to determine whether a specific email address is registered in the system based on the response status from the server, thereby compromising user privacy.

To mitigate this vulnerability, it is recommended to upgrade Django to a more secure version, specifically to 4.2.16 or later, which contains the necessary patches to address this issue.

Here’s the code suggestion to fix the issue by updating the Django version:

Suggested change
django==1.11.29
django==4.2.16

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2021-33203: django: Potential directory traversal via admindocs) (update to 2.2.24)

The issue identified by Trivy relates to a security vulnerability in Django version 1.11.29, specifically CVE-2021-33203. This vulnerability allows for potential directory traversal through the admindocs feature, which could lead to unauthorized access to sensitive files on the server. It is recommended to update to a more secure version of Django to mitigate this risk.

To resolve this issue, you should update the Django version to at least 2.2.24, which addresses the vulnerability. Here’s the code suggestion to make that change:

Suggested change
django==1.11.29
django==2.2.24

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Codacy found a critical Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-64459: django: Django SQL injection) (update to 4.2.26)

The issue identified by the Trivy linter pertains to a security vulnerability in the Django version specified in your dependencies. Specifically, the version 1.11.29 is affected by a SQL injection vulnerability (CVE-2025-64459). This means that if your application uses this version of Django, it could be susceptible to attacks that exploit this vulnerability, potentially allowing an attacker to execute arbitrary SQL code against your database.

To mitigate this security risk, it is recommended to upgrade to a more secure version of Django. The suggested version provided by the linter is 4.2.26, which presumably has addressed the vulnerabilities present in earlier versions.

Here’s the single line change you should make to your dependency list:

Suggested change
django==1.11.29
django==4.2.26

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2025-48432: django: Django Path Injection Vulnerability) (update to 4.2.22)

The issue identified by the Trivy linter is a security vulnerability in Django version 1.11.29, specifically a Path Injection Vulnerability (CVE-2025-48432). This vulnerability could allow an attacker to manipulate file paths, potentially leading to unauthorized access to sensitive files or directories within the application. Since Django 1.11 is an older version and no longer actively maintained, it is crucial to upgrade to a more recent and secure version.

To resolve this issue, you should update the Django dependency to a safe and supported version, such as 4.2.22. This will help mitigate the security risk associated with the identified vulnerability.

Here is the suggested code change:

Suggested change
django==1.11.29
django==4.2.22

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚫 Codacy found a high Security issue: Insecure dependency pypi/django@1.11.29 (CVE-2022-36359: An issue was discovered in the HTTP FileResponse class in Django 3.2 b ...) (update to 3.2.15)

The issue reported by the Trivy linter indicates that the version of Django specified in your requirements (django==1.11.29) is vulnerable to a security issue identified by CVE-2022-36359. This vulnerability affects the HTTP FileResponse class in Django and could potentially allow an attacker to exploit the application in certain scenarios. The recommended action is to update Django to a more secure version, specifically to 3.2.15 or later.

To fix this issue, you should update the version of Django in your requirements file. Here’s the single line change you can make:

Suggested change
django==1.11.29
django==3.2.15

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity issue (CVE-2022-36359) in the HTTP FileResponse class. Update to a secure version (e.g., 3.2.15 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==3.2.15

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity denial-of-service vulnerability (CVE-2025-64458) on Windows. Update to a secure version (e.g., 4.2.26 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.26

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a high-severity SQL injection vulnerability (CVE-2025-57833). Update to a secure version (e.g., 4.2.24 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.24

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Django version 1.11.29 has a critical-severity SQL injection vulnerability (CVE-2025-64459). Update to a secure version (e.g., 4.2.26 or newer).

This might be a simple fix:

Suggested change
django==1.11.29
django==4.2.26

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Django 1.11.29 reached end-of-life in April 2020 and contains multiple critical security vulnerabilities, including SQL injection (CVE-2025-64459). Use a supported version such as 4.2.26.

Suggested change
django==1.11.29
django==4.2.26

requests==2.19.1

Check warning on line 3 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L3 

Insecure dependency pypi/requests@2.19.1 (CVE-2023-32681: python-requests: Unintended leak of Proxy-Authorization header) (update to 2.31.0)

Check warning on line 3 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L3 

Insecure dependency pypi/requests@2.19.1 (CVE-2024-35195: requests: subsequent requests to the same host ignore cert verification) (update to 2.32.0)

Check warning on line 3 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L3 

Insecure dependency pypi/requests@2.19.1 (CVE-2024-47081: requests: Requests vulnerable to .netrc credentials leak via malicious URLs) (update to 2.32.4)

Check warning on line 3 in python/requirements.txt

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

python/requirements.txt#L3 

Insecure dependency pypi/requests@2.19.1 (CVE-2026-25645: requests: Requests: Security bypass due to predictable temporary file creation) (update to 2.33.0)
Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2024-35195: requests: subsequent requests to the same host ignore cert verification) (update to 2.32.0)

The issue identified by the Trivy linter is related to a security vulnerability in the requests library version 2.19.1, specifically CVE-2024-35195. This vulnerability allows subsequent requests to the same host to ignore certificate verification, which can expose applications to man-in-the-middle attacks and other security risks.

To mitigate this security issue, you should update the requests library to a version that has fixed the vulnerability. The recommended version is 2.32.0 or higher.

Here is the code suggestion to fix the issue:

Suggested change
requests==2.19.1
requests==2.32.0

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2024-47081: requests: Requests vulnerable to .netrc credentials leak via malicious URLs) (update to 2.32.4)

The issue identified by the Trivy linter is a security vulnerability in the requests library version 2.19.1. Specifically, it relates to a potential leak of .netrc credentials when handling malicious URLs, which could allow an attacker to access sensitive information. This vulnerability is documented under CVE-2024-47081. To mitigate this risk, it's recommended to update the requests library to a secure version, specifically version 2.32.4 or later.

To fix the issue, you should update the version of the requests library in your requirements file. Here’s the suggested change:

Suggested change
requests==2.19.1
requests==2.32.4

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Nov 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Codacy found a medium Security issue: Insecure dependency pypi/requests@2.19.1 (CVE-2023-32681: python-requests: Unintended leak of Proxy-Authorization header) (update to 2.31.0)

The issue identified by the Trivy linter is a security vulnerability in the requests library version 2.19.1. Specifically, it relates to CVE-2023-32681, which describes an unintended leak of the Proxy-Authorization header. This vulnerability could potentially expose sensitive information if an application using this version of the requests library interacts with a proxy server.

To resolve this issue, you should update the version of the requests library to a secure version that does not contain this vulnerability. The recommended version to upgrade to is 2.31.0.

Here's the code suggestion to fix the issue:

Suggested change
requests==2.19.1
requests==2.31.0

This comment was generated by an experimental AI tool.

Copy link
Copy Markdown

@codacy-production codacy-production Bot Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

Codacy identified an insecure dependency: Requests version 2.19.1 has a high-severity vulnerability (CVE-2018-18074) related to Authorization header leakage on HTTPS to HTTP redirects. Update to a secure version (e.g., 2.20.0 or newer).

This might be a simple fix:

Suggested change
requests==2.19.1
requests==2.20.0

See Issue in Codacy

Copy link
Copy Markdown

@codacy-production codacy-production Bot Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟡 MEDIUM RISK

Requests 2.19.1 contains security flaws including credential leaks and SSL verification bypasses (CVE-2024-35195). Upgrade to at least 2.32.4.

Suggested change
requests==2.19.1
requests==2.32.4

2 changes: 0 additions & 2 deletions whaddayamean.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
}
Copy link
Copy Markdown

@codacy-production codacy-production Bot Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 HIGH RISK

The JSON structure in this file is invalid and will fail standard parsing. It starts with a closing brace '}' and uses YAML-style dash-prefixed list entries. Please ensure the file follows valid JSON syntax.

Try running the following prompt in your IDE agent:

Correct the syntax in whaddayamean.json to be a valid JSON array containing the strings 'gibberish' and 'more gibberish'.

- gibberish
- more gibberish
- unbelievable amounts of gibberish
{
Loading