Danang Heriyadi
Danang Heriyadi
The package node-forge before 0.10.0 is vulnerable to Prototype Pollution with high severity. To fix this vulnerability we need to upgrade node-forge to 0.10.0. Reference: https://www.npmjs.com/advisories/1561
**What happened**: Currently, I use Horusec to scan android application. In my use case, I want to implement OWASP Mobile Security Testing Checklist. One of my use cases the specific...
**What happened**: I want to disable specific rules that hardcoded in [internal/services/engines/leaks/rules.go](https://github.com/ZupIT/horusec/blob/main/internal/services/engines/leaks/rules.go) I often get annoyed with these hard-coded rules which tend to show False Positive results and I don't...
Signed-off-by: Danang Heriyadi **- What I did** Custom Rule Parser requires a new JSON Field "Filter" to work with https://github.com/ZupIT/horusec-engine/pull/120. This PR is related to https://github.com/ZupIT/horusec/issues/1077 **- How to verify...
**What would you like to be added**: As per check on this code [internal/services/formatters/generic/semgrep/config.go#L19](https://github.com/ZupIT/horusec/blob/main/internal/services/formatters/generic/semgrep/config.go#L19), the Horusec using p/r2c-ci ruleset. So, I want a feature to change semgrep ruleset dynamically from...
**What happened**: After installation successful, on my use case the sign up feature on the login page is not needed anymore. Anyone here know how to disable it? Thanks....
Signed-off-by: Danang Heriyadi **- What I did** Add filter file feature to horusec-engine. This PR is related to this issue https://github.com/ZupIT/horusec/issues/1077 **- How to verify it** **- Description for the...
Signed-off-by: Danang Heriyadi This PR goal is to close issue https://github.com/jackc/pgx/issues/1052
Signed-off-by: Danang Heriyadi This PR goal is to close issue https://github.com/jackc/pgx/issues/1052
Signed-off-by: Danang Heriyadi This PR goal is to close issue https://github.com/jackc/pgx/issues/1052