Sarma comments

Repositories
Issues
Comments

Results 2 comments of


                                            Sarma

Secrets rotation lambda is affected by CWE-117 and CWE-93

Echoing: High Severity. PR # 159 created. https://github.com/aws-samples/aws-secrets-manager-rotation-lambdas/pull/159

Issue 157: FIX:CWE-117,93 Log injection in PostgreSQL lambda_function.py

> Adding `.encode()` to a string variable doesn't perform any extra sanitization. It's not going to address your [log injection concerns](https://codeql.github.com/codeql-query-help/python/py-log-injection/). > > The correct fix for this is to...