サクサク読めて、アプリ限定の機能も多数!
トップへ戻る
やろう!確定申告
www.sonarsource.com
I first heard about regular expression denial of service (ReDoS) vulnerabilities from GitHub's Dependabot. Several of my projects over the years have had dependencies that suffered from ReDoS vulnerabilities, and I would bet that if you've built any JavaScript project with dependencies, you've also come across this. This got me thinking; if there are vulnerable regular expressions in our dependenc
Key Information In June 2022, the Sonar Research team discovered critical code vulnerabilities in multiple encrypted email solutions, including Proton Mail, Skiff, and Tutanota. These privacy-oriented webmail services provide end-to-end encryption, making communications safe in transit and at rest. Our findings affect their web clients, where the messages are decrypted, mobile clients were not aff
Formerly SonarCloudCloud-based static analysis tool for your CI/CD workflows Formerly SonarQubeSelf-managed static analysis tool for continuous codebase inspection
Blog postThe Tainted Voyage: Uncovering Voyager's VulnerabilitiesSonarQube Cloud detected an arbitrary file upload in Voyager, tracked as CVE-2024-55417. When combined with other vulnerabilities our research team found, attackers can execute arbitrary code on the server if an authenticated user clicks on a link. Read article > Blog postSonarQube Server 2025.1 LTA Release AnnouncementThe new SonarQ
このページを最初にブックマークしてみませんか?
『Clean Code Tools for Writing Clear, Readable & Understandable Secure Quality ...』の新着エントリーを見る
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く