System-End/hackatime
1
0
Fork 0
mirror of https://github.com/System-End/hackatime.git synced 2026-04-19 16:38:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
hackatime/config/brakeman.ignore
Max Wofford e6ed172d85
Remove old neighborhood logic (#753) 
Co-authored-by: Echo <github@3kh0.net>
2025-12-30 21:31:57 +01:00

51 lines
2.3 KiB
Text
Raw Permalink Blame History

{
"ignored_warnings": [
{
"warning_type": "SQL Injection",
"warning_code": 0,
"fingerprint": "06ca3650eaeb8d28e062c1c6dcbeab95fb2ccd0c5bb49165ad469bcb6b791d3e",
"check_name": "SQL",
"message": "Possible SQL injection",
"file": "app/models/concerns/heartbeatable.rb",
"line": 175,
"link": "https://brakemanscanner.org/docs/warning_types/sql_injection/",
"code": "Arel.sql(\"DATE_TRUNC('day', to_timestamp(time) AT TIME ZONE '#{(user_timezone or \"UTC\")}')\")",
"render_path": null,
"location": {
"type": "method",
"class": "Heartbeatable",
"method": "daily_durations"
},
"user_input": "user_timezone",
"confidence": "Medium",
"cwe_id": [
89
],
"note": ""
},
{
"warning_type": "SQL Injection",
"warning_code": 0,
"fingerprint": "db41fbf90d0feb7b7c1c11545d498447162cf5e54e091d2ddcfcaba28b2513f6",
"check_name": "SQL",
"message": "Possible SQL injection",
"file": "app/jobs/one_time/generate_unique_heartbeat_hashes_job.rb",
"line": 32,
"link": "https://brakemanscanner.org/docs/warning_types/sql_injection/",
"code": "Heartbeat.where(:id => chunk.map do\n index = 1\nputs(\"Processing heartbeat #{heartbeat.id} (#{1} of #{batch.size})\")\nfield_hash = Heartbeat.generate_fields_hash(heartbeat.attributes)\nputs(\"Field hash: #{Heartbeat.generate_fields_hash(heartbeat.attributes)}\")\n[heartbeat.id, Heartbeat.generate_fields_hash(heartbeat.attributes)]\n end.map(&:first)).update_all(\"fields_hash = CASE #{chunk.map do\n index = 1\nputs(\"Processing heartbeat #{heartbeat.id} (#{1} of #{batch.size})\")\nfield_hash = Heartbeat.generate_fields_hash(heartbeat.attributes)\nputs(\"Field hash: #{Heartbeat.generate_fields_hash(heartbeat.attributes)}\")\n[heartbeat.id, Heartbeat.generate_fields_hash(heartbeat.attributes)]\n end.map do\n \"WHEN id = #{id} THEN '#{hash}'\"\n end.join(\" \")} END\")",
"render_path": null,
"location": {
"type": "method",
"class": "OneTime::GenerateUniqueHeartbeatHashesJob",
"method": "perform"
},
"user_input": "Heartbeat.generate_fields_hash(heartbeat.attributes)",
"confidence": "High",
"cwe_id": [
89
],
"note": ""
}
],
"brakeman_version": "7.0.2"
}
Reference in a new issue View git blame Copy permalink