oxsecurity · bdovaz · Feb 23, 2025 · Feb 23, 2025 · Feb 23, 2025 · Feb 23, 2025
@@ -0,0 +1,9 @@
+#!/bin/bash
+
+curl http://test/path
+
+curl http://test/path2
+
+secret=111111111111111111111111111111
+
+secret2=111111111111111111111111111111
@@ -1,3 +1,3 @@
 if len(in) == 0 {
-  return "", fmt.Errorf("Input is empty")
-}
+	return "", fmt.Errorf("Input is empty")
+}
@@ -1,3 +1,3 @@
 if len(in) == 0 {
-  return "", fmt.Errorf("Input is empty")
-}
+	return "", fmt.Errorf("Input is empty")
+}
@@ -0,0 +1,3 @@
+module megalinter.io/test-bad
+
+go 1.21
@@ -0,0 +1,7 @@
+package bad
+
+func _() {
+	if len(in) == 0 {
+		return "", fmt.Errorf("Input is empty")
+	}
+}
@@ -0,0 +1,7 @@
+package bad
+
+func _() {
+	if len(in) == 0 {
+		return "", fmt.Errorf("Input is empty")
+	}
+}
@@ -0,0 +1,3 @@
+module megalinter.io/test-fix
+
+go 1.21
@@ -0,0 +1,9 @@
+// This is a package comment
+package main
+
+import "fmt"
+
+func main() {
+fmt.Println("hello world")
+nicolas()
+}
@@ -0,0 +1,8 @@
+// This is a package comment
+package main
+
+import "fmt"
+
+func nicolas() {
+fmt.Println("hello world")
+}
@@ -0,0 +1,3 @@
+module megalinter.io/test-good
+
+go 1.21
@@ -0,0 +1,9 @@
+// This is a package comment
+package main
+
+import "fmt"
+
+func main() {
+	fmt.Println("hello world")
+	nicolas()
+}
@@ -0,0 +1,8 @@
+// This is a package comment
+package main
+
+import "fmt"
+
+func nicolas() {
+	fmt.Println("hello world")
+}
@@ -0,0 +1,2 @@
+[rule.package-comments]
+    severity = "error"
@@ -1,4 +1,5 @@
 public class Application {
+  int my_Field = 1;
 
   /**
    * main.

@@ -6,6 +6,12 @@ abstract internal class A {
 }
 
 class B : A() {
+    public fun test() {
+        System.gc()
+        Runtime.getRuntime().gc()
+        System.runFinalization()
+    }
+
     override public val v = ""
     override suspend fun f(v: Any): Any = ""
     override tailrec fun findFixPoint(x: Double): Double

@@ -0,0 +1,11 @@
+potential-bugs:
+  active: true
+  ExplicitGarbageCollectionCall:
+    active: true
+    severity: error
+
+style:
+  active: true
+  ModifierOrder:
+    active: true
+    severity: warning
@@ -0,0 +1,5 @@
+{
+    "imageRepositoryAllowList": [],
+    "publicRegistries": [],
+    "untrustedRegistries": ["k8s.gcr.io/pause"]
+}
@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: privileged
+spec:
+  containers:
+    - name: pause
+      image: k8s.gcr.io/pause
@@ -0,0 +1,56 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: grafana
+  name: grafana
+spec:
+  selector:
+    matchLabels:
+      app: grafana
+  template:
+    metadata:
+      labels:
+        app: grafana
+    spec:
+      securityContext:
+        fsGroup: 472
+        supplementalGroups:
+          - 0
+      containers:
+        - name: grafana
+          image: grafana/grafana:9.2.1
+          imagePullPolicy: IfNotPresent
+          ports:
+            - containerPort: 3000
+              name: http-grafana
+              protocol: TCP
+          readinessProbe:
+            failureThreshold: 3
+            httpGet:
+              path: /robots.txt
+              port: 3000
+              scheme: HTTP
+            initialDelaySeconds: 10
+            periodSeconds: 30
+            successThreshold: 1
+            timeoutSeconds: 2
+          livenessProbe:
+            failureThreshold: 3
+            initialDelaySeconds: 30
+            periodSeconds: 10
+            successThreshold: 1
+            tcpSocket:
+              port: 3000
+            timeoutSeconds: 1
+          resources:
+            requests:
+              cpu: 250m
+              memory: 750Mi
+          volumeMounts:
+            - mountPath: /var/lib/grafana
+              name: grafana-pv
+      volumes:
+        - name: grafana-pv
+          persistentVolumeClaim:
+            claimName: grafana-pvc
@@ -1,4 +1,4 @@
-try:
-    pass
-except:
-    pass
+from flask import Flask
+
+app = Flask(__name__)
+app.run(debug=True)
@@ -1,4 +1,9 @@
+from flask import Flask
+
 try:
+    app = Flask(__name__)
+    app.run(debug=True)
+
     pass
 except:
     pass
@@ -0,0 +1,12 @@
+---
+- name: Install Apache from an MSI 
+  hosts: all 
+
+  tasks:
+    - name: Create (or update) Firewall Rule1
+      azure_rm_sqlfirewallrule:
+        resource_group: myResourceGroup1
+        server_name: firewallrulecrudtest-6285
+        name: firewallrulecrudtest-5370
+        start_ip_address: 0.0.0.0
+        end_ip_address: 172.28.11.138
@@ -0,0 +1,12 @@
+---
+- name: Install Apache from an MSI 
+  hosts: all 
+
+  tasks:
+    - name: Create (or update) Firewall Rule1
+      azure_rm_sqlfirewallrule:
+        resource_group: myResourceGroup1
+        server_name: firewallrulecrudtest-6285
+        name: firewallrulecrudtest-5370
+        start_ip_address: 0.0.0.0
+        end_ip_address: 172.28.11.138
@@ -0,0 +1,14 @@
+using System;
+using System.Security.Cryptography;
+
+public class Program
+{	
+    public void GenerateBadKey() {
+        var rng = new System.Random();
+        byte[] key = new byte[16];
+        rng.NextBytes(key);
+        SymmetricAlgorithm cipher = Aes.Create();
+        // ruleid: deeptodoruleid: use_weak_rng_for_keygeneration
+        cipher.Key = key;
+    }
+}
@@ -1,4 +1,4 @@
-resource "aws_instance" "instanceWithNoVpc" {
+resource "aws_instance" "instanceWithNoVpc2" {
   ami           = "some-id"
   instance_type = "t2.micro"