Giter VIP home page Giter VIP logo

labyrinth's People

Contributors

amunchet avatar

Stargazers

avatar avatar avatar avatar

Watchers

avatar avatar avatar

labyrinth's Issues

Deepcode 7

Missing close for concurrent.futures.ThreadPoolExecutor [:34] , add close or use a with block.

serve.py
Line 34
Line 525
Line 533
Line 558
Line 576
Line 593

watcher.py
Line 38

Deepcode 2

Unsanitized input from the HTTP request body [:117] flows [:117, :120, ... :139] into the return value of upload [:139] , where it is used to render an HTML page returned to the user. This may result in a Cross-Site Scripting attack (XSS).

https://owasp.org/www-community/attacks/xss/

serve.py

  • Line 139
  • Line 149
  • Line 193
  • Line 256
  • Line 326
  • Line 447
  • Line 506
  • Line 516
  • Line 584
  • Line 596
  • Line 610
  • Line 626
  • Line 637
  • Line 853

Deepcode 9

No catch method for promise [:125] . This may result in an unhandled promise rejection.

CreateEditSubnet.vue - Line 125
authService.js - Line 161

Deepcode 10

Use the is operator instead of == [:20] to compare to None [:20] , because == [:20] calls eq which is slower and error-prone.

common_auth.py

  • Line 20
  • Line 25

Deepcode 3

map [:97] does not modify this array [:97] , it returns a new object. Ignoring the return value of map [:97] is not the intended use of this api. Did you mean to modify this array [:97] ?

CreateEditHost.vue

Line 97

Deepcode 12

test_03_ansible.py

Line 70

Use os.makedirs instead of os.mkdir [:70] because the given path may require creating the parent directories.

Deepcode 5

The function defined here [:309] takes 0 parameter(s), but is called here [:274] with 1 argument(s). The extra arguments will be ignored.
Line 274

Deploy.vue

Deepcode 4

The global event listener for event resize [:213] on window [:213] , added in addEventListener [:213] in lifecycle method created [:212] is never removed. Remove it in the vue lifecycle method beforeDestroy.

Line 213

Dashboard.vue

Deepcode 6

Use os.makedirs instead of os.mkdir [:128] because the given path may require creating the parent directories.

serve.py

  • Line 128

ansible_helper.py

  • Line 125
  • Line 129

Deepcode 1

Unsanitized input from an HTTP parameter [:110] flows [:110, :114, :133] into open, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to read arbitrary files.

https://owasp.org/www-community/attacks/Path_Traversal

serve.py

  • Line 133
  • Line 134
  • Line 376
  • Line 496
  • Line 516
  • Line 636
  • Line 655
  • Line 685

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.