Click here to lend your support to: rails-brakeman.com and make a donation at www.pledgie.com !

flyerhzm/rails-brakeman.com

Edit Repository Rails brakeman.com
Build
90
Duration
1 secs
Finished
2017-03-05 12:25:42 UTC
Branch
master
Commit
5bf10bc
Message
fix Repository#last_build_at
Brakeman Report

Summary

Scanned/Reported Total
Controllers 7
Models 4
Templates 14
Errors 0
Security Warnings 4 (0)
Ignored Warnings 0

Warning Type Total
Cross Site Scripting 2
Cross-Site Request Forgery 1
File Access 1

Security Warnings

Confidence Class Method Warning Type Message
Weak RepositoriesController show File Access
Model attribute used in file name near line 48: send_file(Rails.root.join("public/images/#{(Repositor...

Controller Warnings

Confidence Controller Warning Type Message
Medium ApplicationController Cross-Site Request Forgery protect_from_forgery should be configured with 'with: :exception'

View Warnings

Confidence Template Warning Type Message
Medium builds/index (BuildsController#index) Cross Site Scripting
Unsafe model attribute in link_to href near line 3: link_to((Repository.where(:github_name => ("#{par...
Medium builds/show (BuildsController#show) Cross Site Scripting
Unsafe model attribute in link_to href near line 3: link_to((Repository.where(:github_name => ("#{par...