Loading...

XML

Word

Printable

Type: Task
Resolution: Won't Do
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: Notifications
Labels:
- platform-notifications

Story Points:
3
Epic Link:
Eventing-backend - Security and Hardening
Blocked:
False
Ready:
False
Acceptance Criteria:
None
BZ requires_doc_text:
Unset
Regression:
No
BZ Keywords:
- Unset
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description

Do static code analysis (using a SAST tool like SonarQube) and remediate all high/medium risk vulnerabilities.

Expected results

Report and remediation.

Motivation/Justification

Security (ESS).

Additional info

https://source.redhat.com/departments/it/it-information-security/wiki/enterprise_security_standard_80_essv8#SECAPPREQ2_Static_Application_Security_Testing__SAST

is related to

RHCLOUD-26012 Implement ADR-021 - Split the Notifications engine

Closed

Assignee:: Unassigned

Reporter:: Viliam Krizan

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2022/02/10 10:32 AM

Updated:: 2023/07/13 1:55 PM

Resolved:: 2023/07/13 1:55 PM