Rest json vul (!50) · Merge requests · Big Bang / Packages / Sandbox / Holocron / Hygieia API · GitLab

UNCLASSIFIED - NO CUI

This is an archived project. Repository and other project resources are read-only.

Iron Bank will be replacing the old container signing certificate with the new container signing certificate. No additional action is required. Users can find additional information regarding the certificate rotation and container signature verification here and here.

Currently supported Big Bang Version is 2.37

abhayashrestha requested to merge rest-json-vul into master Jan 19, 2022

Avoiding Array as a top level JSON response vulnerability by adding new rest endpoints. Response for /api/secure/team, /api/secure/dashboard/, /api/secure/collector, and /api/secure/scopecollector/id will be in the form { result: [...data]}, as opposed to just [...data]
Testing the return value of the endpoints.

Edited Jan 19, 2022 by abhayashrestha

UNCLASSIFIED - NO CUI