brunobotelhobr
diff --git a/‎java/example1/bin/main/br/com/zup/vulnerabilities/random/RandomIssue.class‎
744 Bytes b/‎java/example1/bin/main/br/com/zup/vulnerabilities/random/RandomIssue.class‎
744 Bytes
diff --git a/‎java/example1/bin/main/br/com/zup/vulnerabilities/random/RandomSecure.class‎
847 Bytes b/‎java/example1/bin/main/br/com/zup/vulnerabilities/random/RandomSecure.class‎
847 Bytes
diff --git a/‎java/example1/bin/main/br/com/zup/vulnerabilities/trust/AllTrustManagerIssue.class‎
963 Bytes b/‎java/example1/bin/main/br/com/zup/vulnerabilities/trust/AllTrustManagerIssue.class‎
963 Bytes
diff --git a/‎java/example1/bin/main/br/com/zup/vulnerabilities/trust/AllTrustSSLSocketFactoryIssue.class‎
2.63 KB b/‎java/example1/bin/main/br/com/zup/vulnerabilities/trust/AllTrustSSLSocketFactoryIssue.class‎
2.63 KB
diff --git a/‎java/example2/bin/main/log4j2.xml‎
Lines changed: 45 additions & 0 deletions b/‎java/example2/bin/main/log4j2.xml‎
Lines changed: 45 additions & 0 deletions
diff --git a/‎php/report-sonar.sarif‎
Lines changed: 165 additions & 0 deletions b/‎php/report-sonar.sarif‎
Lines changed: 165 additions & 0 deletions
@@ -0,0 +1,45 @@
+<!--
+ Copyright 2021 ZUP IT SERVICOS EM TECNOLOGIA E INOVACAO SA
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+     http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ Copyright 2021 ZUP IT SERVICOS EM TECNOLOGIA E INOVACAO SA
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+     http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+
+<Configuration>
+    <Appenders>
+        <Console name="Console" target="SYSTEM_OUT">
+            <PatternLayout pattern="%d{HH:mm:ss.SSS} [%t] %-5level %logger{36} - %msg%n"/>
+        </Console>
+    </Appenders>
+    <Loggers>
+        <Root level="debug">
+            <AppenderRef ref="Console"/>
+        </Root>
+    </Loggers>
+</Configuration>
@@ -0,0 +1,165 @@
+{
+  "runs" : [ {
+    "tool" : {
+      "driver" : {
+        "guid" : "SonarQube",
+        "fullName" : "SonarQube",
+        "rules" : [ {
+          "guid" : "php:S121",
+          "shortDescription" : {
+            "text" : "Add curly braces around the nested statement(s)."
+          }
+        }, {
+          "guid" : "php:S2077",
+          "shortDescription" : {
+            "text" : "Make sure that formatting this SQL query is safe here."
+          }
+        }, {
+          "guid" : "php:S1781",
+          "shortDescription" : {
+            "text" : "Write this \"NULL\" constant in lower case."
+          }
+        }, {
+          "guid" : "php:S1192",
+          "shortDescription" : {
+            "text" : "Define a constant instead of duplicating this literal \"put your unique phrase here\" 8 times."
+          }
+        } ]
+      }
+    },
+    "results" : [ {
+      "ruleId" : "php:S2077",
+      "level" : "warning",
+      "message" : {
+        "text" : "Make sure that formatting this SQL query is safe here."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/basic-collection.php"
+          },
+          "region" : {
+            "startLine" : 23,
+            "startColumn" : 0,
+            "endLine" : 23,
+            "endColumn" : 23
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S1781",
+      "level" : "note",
+      "message" : {
+        "text" : "Write this \"NULL\" constant in lower case."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/sql-injection.php"
+          },
+          "region" : {
+            "startLine" : 23,
+            "startColumn" : 4,
+            "endLine" : 23,
+            "endColumn" : 23
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S121",
+      "level" : "error",
+      "message" : {
+        "text" : "Add curly braces around the nested statement(s)."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/sql-injection.php"
+          },
+          "region" : {
+            "startLine" : 23,
+            "startColumn" : 0,
+            "endLine" : 23,
+            "endColumn" : 23
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S1781",
+      "level" : "note",
+      "message" : {
+        "text" : "Write this \"NULL\" constant in lower case."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/cross-site-scripting-xss.php"
+          },
+          "region" : {
+            "startLine" : 21,
+            "startColumn" : 4,
+            "endLine" : 21,
+            "endColumn" : 21
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S121",
+      "level" : "error",
+      "message" : {
+        "text" : "Add curly braces around the nested statement(s)."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/cross-site-scripting-xss.php"
+          },
+          "region" : {
+            "startLine" : 21,
+            "startColumn" : 0,
+            "endLine" : 21,
+            "endColumn" : 21
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S1192",
+      "level" : "error",
+      "message" : {
+        "text" : "Define a constant instead of duplicating this literal \"put your unique phrase here\" 8 times."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example1/wp-config.php"
+          },
+          "region" : {
+            "startLine" : 63,
+            "startColumn" : 28,
+            "endLine" : 63,
+            "endColumn" : 63
+          }
+        }
+      } ]
+    }, {
+      "ruleId" : "php:S2077",
+      "level" : "warning",
+      "message" : {
+        "text" : "Make sure that formatting this SQL query is safe here."
+      },
+      "locations" : [ {
+        "physicalLocation" : {
+          "artifactLocation" : {
+            "uri" : "/Users/botelho/Library/CloudStorage/Dropbox/My-Code/My-Vulnerable-Code-Snippets/php/example2/sql-injection_2.php"
+          },
+          "region" : {
+            "startLine" : 25,
+            "startColumn" : 9,
+            "endLine" : 25,
+            "endColumn" : 25
+          }
+        }
+      } ]
+    } ]
+  } ]
+}