Repo sync #39392
Repo sync #39392
10 new alerts including 4 critical severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 4 critical
- 6 high
Alerts not introduced by this pull request might have been detected because the code changes were too large.
See annotations below for details.
Annotations
Check failure on line 29 in src/archives/lib/is-archived-version.ts
Code scanning / CodeQL
Type confusion through parameter tampering Critical
Check failure on line 88 in src/article-api/middleware/validation.ts
Code scanning / CodeQL
Type confusion through parameter tampering Critical
Check failure on line 89 in src/article-api/middleware/validation.ts
Code scanning / CodeQL
Type confusion through parameter tampering Critical
Check failure on line 337 in src/content-linter/lib/linting-rules/liquid-ifversion-versions.js
Code scanning / CodeQL
Incomplete string escaping or encoding High
Check failure on line 10 in src/frame/lib/read-file-contents.js
Code scanning / CodeQL
Uncontrolled data used in path expression High
Check failure on line 71 in src/frame/middleware/context/generic-toc.ts
Code scanning / CodeQL
Type confusion through parameter tampering Critical
Check failure on line 15 in src/frame/middleware/cookie-parser.ts
Code scanning / CodeQL
Missing CSRF middleware High
Check failure on line 236 in src/frame/middleware/index.ts
Code scanning / CodeQL
Missing rate limiting High
Check failure on line 258 in src/frame/middleware/index.ts
Code scanning / CodeQL
Missing rate limiting High
Check failure on line 336 in src/languages/lib/correct-translation-content.js
Code scanning / CodeQL
Use of externally-controlled format string High