From c7d5a78bfc50dba202d2dde2138bb7cd8802161d Mon Sep 17 00:00:00 2001 From: Ilguiz Latypov Date: Thu, 29 Oct 2015 21:21:41 -0400 Subject: [PATCH 1/4] Show a message on clicking its header. Fixes the CSRF lesson, except that the task does not mention clicking the message and the solution shows an incorrect img URL. Comment #43. --- src/main/webapp/js/goatUtil.js | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/src/main/webapp/js/goatUtil.js b/src/main/webapp/js/goatUtil.js index f553f711f..8f70b1e4e 100644 --- a/src/main/webapp/js/goatUtil.js +++ b/src/main/webapp/js/goatUtil.js @@ -158,10 +158,13 @@ goat.utils = { var url = $(el).attr('href'); $(el).unbind('click').attr('href','#').attr('link',url); //TODO pull currentMenuId - $(el).click(function() { + $(el).click(function(event) { event.preventDefault(); var _url = $(el).attr('link'); - $.get(_url, {success:showResponse}); + console.log("About to GET " + _url); + $.get(_url) + .done(function(response) {$('#lesson_content').html(response);}) + .fail(function() {alert("failed a GET " + _url);}); } ); }); From 1e3ac873158d824a2cac5d0d49c7075a98541cbf Mon Sep 17 00:00:00 2001 From: "Ilguiz [eel ghEEz] Latypov" Date: Wed, 14 Aug 2019 00:17:16 -0400 Subject: [PATCH 2/4] travis + copilot --- .travis.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 .travis.yml diff --git a/.travis.yml b/.travis.yml new file mode 100644 index 000000000..cd07d3a51 --- /dev/null +++ b/.travis.yml @@ -0,0 +1,10 @@ +language: java + +jdk: + - oraclejdk8 + +# If your build needs more advanced behavior, see detailed Travis CI instructions: +# https://docs.travis-ci.com/user/languages/java/ + +after_success: + - bash <(curl -s https://copilot.blackducksoftware.com/ci/travis/scripts/upload) From 85fd788b781a54d925e1858e40838279ada3a02e Mon Sep 17 00:00:00 2001 From: "Ilguiz [eel ghEEz] Latypov" Date: Wed, 14 Aug 2019 00:21:01 -0400 Subject: [PATCH 3/4] Update .travis.yml the oracle install script requires "feature" "9" through "14" but got "8" --- .travis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index cd07d3a51..707f50a2a 100644 --- a/.travis.yml +++ b/.travis.yml @@ -1,7 +1,7 @@ language: java jdk: - - oraclejdk8 + - openjdk8 # If your build needs more advanced behavior, see detailed Travis CI instructions: # https://docs.travis-ci.com/user/languages/java/ From 8e3d6395762f30bc6db8618e9db232c6bb17d805 Mon Sep 17 00:00:00 2001 From: "Ilguiz [eel ghEEz] Latypov" Date: Wed, 14 Aug 2019 00:49:54 -0400 Subject: [PATCH 4/4] show risks --- README.MD | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.MD b/README.MD index 39ff0260a..c62bbcd3a 100644 --- a/README.MD +++ b/README.MD @@ -1,3 +1,5 @@ +[![Black Duck Security Risk](https://copilot.blackducksoftware.com/github/repos/ilatypov/WebGoat-Legacy/branches/master/badge-risk.svg)](https://copilot.blackducksoftware.com/github/repos/ilatypov/WebGoat-Legacy/branches/master) + # Important Information Thank you for downloading WebGoat! This is the WebGoat Legacy version which is essentially the WebGoat 5 with a new UI.