Static Analysis

Uploaded by

masszwaker

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

35 views10 pages

Static Analysis

Uploaded by

masszwaker

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

NO ISSUE SEVERITY STANDARDS FILES

1 Files may warning CWE: Show Files Suppress

contain CWE-312: coil/request/ImageRequest.java android_h
hardcoded Cleartext coil/request/ImageResult.java com.thep
sensitive Storage of coil/request/Parameters.java Suppress
information like Sensitive coil/util/ImageLoaderOptions.java android_h
usernames, Information com/amplitude/android/migration/ com.thep
passwords, OWASP Top RemnantDataMigration.java these file
keys etc. 10: M9: com/amplitude/id/FileIdentityStorage.java
Reverse com/amplitude/id/IdentityConfiguration.java
Engineering com/azure/core/http/ProxyOptions.java
OWASP com/azure/core/http/netty/implementation/
MASVS: AzureNettyHttpClientContext.java
MSTG- com/azure/core/http/policy/
STORAGE-14 AddHeadersFromContextPolicy.java
com/azure/core/http/policy/DefaultRedirectStrategy.java
com/azure/core/http/policy/UserAgentPolicy.java
com/azure/core/implementation/http/policy/
InstrumentationPolicy.java
com/azure/core/implementation/jackson/
JacksonVersion.java
com/azure/core/implementation/jackson/
ResponseErrorDeserializer.java
com/azure/core/implementation/logging/LoggingKeys.java
com/azure/core/util/Configuration.java
com/azure/core/util/logging/LoggingEventBuilder.java
com/azure/core/util/tracing/Tracer.java
com/azure/core/util/tracing/Utils.java
com/azure/storage/common/
StorageSharedKeyCredential.java
com/azure/storage/common/implementation/Constants.java
com/azure/storage/common/implementation/
StorageImplUtils.java
com/azure/storage/internal/avro/implementation/
AvroConstants.java
com/bumptech/glide/load/Option.java
com/bumptech/glide/load/engine/DataCacheKey.java
com/bumptech/glide/load/engine/EngineResource.java
com/bumptech/glide/load/engine/ResourceCacheKey.java
com/ctc/wstx/shaded/msv_core/reader/trex/ng/
RELAXNGReader.java
com/ctc/wstx/shaded/msv_core/reader/xmlschema/
XMLSchemaReader.java
com/ctc/wstx/shaded/msv_core/verifier/identity/
IDConstraintChecker.java
com/kyn/BuildConfig.java
com/kyn/domain/model/response/AreaBasedResponse.java
com/kyn/domain/model/response/AreaByIdResponse.java
com/kyn/domain/model/response/CreatedBy.java
com/kyn/domain/model/response/
LocationAreasResponse.java
com/kyn/domain/model/response/ZoneBasedResponse.java
com/kyn/model/home/Category.java
com/kyn/model/home/CategoryTest.java
com/kyn/model/home/Location.java
com/kyn/model/home/UserRole.java
com/kyn/models/Category.java
com/kyn/models/CategoryByVideo.java
com/kyn/models/CategoryInfo.java
com/kyn/models/Location.java
com/kyn/models/LocationBlog.java
com/kyn/models/LocationByVideo.java
com/kyn/models/PaginationState.java
com/kyn/models/Role.java
NO ISSUE SEVERITY STANDARDS FILES
com/kyn/models/RoleByVideo.java
com/kyn/models/User.java
com/kyn/models/UserProfileRole.java
com/kyn/models/UserRole.java
com/kyn/models/analytics/MixPanelCommentInfo.java
com/kyn/models/analytics/MixPanelOtherUserInfo.java
com/kyn/models/events/FilterLocation.java
com/kyn/models/post/create/CategoryReq.java
com/kyn/models/post/create/LocationReq.java
com/kyn/models/profile/Category.java
com/kyn/models/profile/Locations.java
com/kyn/models/profile/RequestType.java
com/kyn/models/profile/RequestTypes.java
com/kyn/models/profile/UserProfileData.java
com/kyn/models/profile/UserRole.java
com/kyn/models/profile/categorys.java
com/kyn/models/register/RegisterRequest.java
com/kyn/models/register/UserRole.java
com/kyn/models/report/ReportData.java
com/kyn/models/report/ReportReason.java
com/kyn/models/video/videos/VideoCategoryList.java
com/kyn/sealed/DeepLinkActions.java
com/kyn/sealed/GenderSealed.java
com/kyn/sealed/LoginType.java
com/kyn/sealed/UserType.java
com/kyn/ui/Follower/FollowerFragmentDirections.java
com/kyn/ui/comments/model/ContentInfo.java
com/kyn/ui/components/models/FollowerUiModel.java
com/kyn/ui/components/models/LikelistUiModel.java
com/kyn/ui/home/HomePageFragmentDirections.java
com/kyn/ui/home/UiAction.java
com/kyn/ui/klips/KlipListFragmentDirections.java
com/kyn/ui/like/LikelistFragmentDirections.java
com/kyn/ui/main/presentation/screen/
SplashScreenFragmentDirections.java
com/kyn/ui/notices/presentation/
BlogDetailFragmentDirections.java
com/kyn/ui/postdetails/PostDetailsFragmentDirections.java
com/kyn/ui/profile/presentation/ProfileFragmentArgs.java
com/kyn/ui/profile/presentation/
ProfileFragmentDirections.java
com/kyn/ui/registration/models/UserRegistrationUIModel.java
com/kyn/ui/search/model/SearchProfileUIModel.java
com/kyn/ui/search/presentation/screen/
SearchFragmentDirections.java
com/kyn/ui/video/VideoDetailFragmentDirections.java
com/kyn/ui/video/view_all_videos/presentation/
ViewAllVideosFragmentDirections.java
com/kyn/utils/CommonUtils.java
com/kyn/utils/Env.java
com/kyn/utils/KynConst.java
com/microsoft/azure/storage/CloudStorageAccount.java
com/microsoft/azure/storage/Constants.java
com/microsoft/azure/storage/StorageErrorCodeStrings.java
com/microsoft/azure/storage/core/SR.java
com/microsoft/azure/storage/table/TableConstants.java
com/moengage/core/config/NetworkDataSecurityConfig.java
com/moengage/core/internal/CoreConstants.java
com/moengage/core/internal/data/reports/
BatchHelperKt.java
com/moengage/core/internal/data/reports/
ReportsConstantsKt.java
com/moengage/core/internal/model/logging/LogData.java
NO ISSUE SEVERITY STANDARDS FILES
com/moengage/core/internal/rest/Request.java
com/moengage/core/internal/rest/RestConstantsKt.java
com/moengage/core/internal/rest/interceptor/
EncryptionInterceptorKt.java
com/moengage/core/internal/storage/database/contract/
KeyValueStoreContractKt.java
com/moengage/core/internal/storage/preference/
SharedPrefKeysKt.java
com/moengage/core/internal/utils/RestUtilKt.java
com/moengage/inapp/internal/repository/remote/
ApiManagerKt.java
com/moengage/inapp/internal/repository/remote/
ResponseParserKt.java
com/moengage/richnotification/internal/
RichPushConstantsKt.java
com/moengage/trigger/evaluator/internal/repository/local/
MapperKt.java
com/mux/stats/sdk/core/model/CustomerPlayerData.java
com/mux/stats/sdk/core/model/SessionTag.java
io/grpc/PersistentHashArrayMappedTrie.java
io/grpc/internal/DnsNameResolver.java
io/grpc/internal/PickFirstLoadBalancerProvider.java
io/grpc/internal/TransportFrameUtil.java
io/netty/handler/codec/http/HttpHeaders.java
io/netty/handler/proxy/Socks4ProxyHandler.java
io/netty/handler/proxy/Socks5ProxyHandler.java
io/netty/handler/ssl/PemPrivateKey.java
io/netty/handler/ssl/SslMasterKeyHandler.java
io/netty/util/DomainWildcardMappingBuilder.java
reactor/core/scheduler/SchedulerMetricDecorator.java
reactor/netty/transport/ProxyProvider.java
2 The App logs info CWE: Show Files Suppress
information. CWE-532: com/amplitude/common/android/LogcatLogger.java android_l
Sensitive Insertion of com/amplitude/common/jvm/ConsoleLogger.java com.thep
information Sensitive com/appsflyer/internal/AFf1cSDK.java Suppress
should never Information com/appsflyer/internal/AFf1fSDK.java android_l
be logged. into Log File com/appsflyer/internal/AFf1gSDK.java com.thep
OWASP com/appsflyer/internal/AFf1uSDK.java these file
MASVS: com/appsflyer/internal/AFg1dSDK.java
MSTG- com/appsflyer/share/LinkGenerator.java
STORAGE-3 com/azure/core/implementation/logging/DefaultLogger.java
com/bumptech/glide/Glide.java
com/bumptech/glide/disklrucache/DiskLruCache.java
com/bumptech/glide/gifdecoder/GifHeaderParser.java
com/bumptech/glide/gifdecoder/StandardGifDecoder.java
com/bumptech/glide/load/data/AssetPathFetcher.java
com/bumptech/glide/load/data/HttpUrlFetcher.java
com/bumptech/glide/load/data/LocalUriFetcher.java
com/bumptech/glide/load/data/mediastore/
ThumbFetcher.java
com/bumptech/glide/load/data/mediastore/
ThumbnailStreamOpener.java
com/bumptech/glide/load/engine/DecodeJob.java
com/bumptech/glide/load/engine/DecodePath.java
com/bumptech/glide/load/engine/Engine.java
com/bumptech/glide/load/engine/GlideException.java
com/bumptech/glide/load/engine/SourceGenerator.java
com/bumptech/glide/load/engine/bitmap_recycle/
LruArrayPool.java
com/bumptech/glide/load/engine/bitmap_recycle/
LruBitmapPool.java
com/bumptech/glide/load/engine/cache/
NO ISSUE SEVERITY STANDARDS FILES
DiskLruCacheWrapper.java
com/bumptech/glide/load/engine/cache/
MemorySizeCalculator.java
com/bumptech/glide/load/engine/executor/
GlideExecutor.java
com/bumptech/glide/load/engine/executor/
RuntimeCompat.java
com/bumptech/glide/load/engine/prefill/
BitmapPreFillRunner.java
com/bumptech/glide/load/model/ByteBufferEncoder.java
com/bumptech/glide/load/model/ByteBufferFileLoader.java
com/bumptech/glide/load/model/FileLoader.java
com/bumptech/glide/load/model/ResourceLoader.java
com/bumptech/glide/load/model/ResourceUriLoader.java
com/bumptech/glide/load/model/StreamEncoder.java
com/bumptech/glide/load/resource/
DefaultOnHeaderDecodedListener.java
com/bumptech/glide/load/resource/bitmap/
BitmapEncoder.java
com/bumptech/glide/load/resource/bitmap/
BitmapImageDecoderResourceDecoder.java
com/bumptech/glide/load/resource/bitmap/
DefaultImageHeaderParser.java
com/bumptech/glide/load/resource/bitmap/
Downsampler.java
com/bumptech/glide/load/resource/bitmap/
DrawableToBitmapConverter.java
com/bumptech/glide/load/resource/bitmap/
HardwareConfigState.java
com/bumptech/glide/load/resource/bitmap/
TransformationUtils.java
com/bumptech/glide/load/resource/bitmap/
VideoDecoder.java
com/bumptech/glide/load/resource/gif/
ByteBufferGifDecoder.java
com/bumptech/glide/load/resource/gif/
GifDrawableEncoder.java
com/bumptech/glide/load/resource/gif/
StreamGifDecoder.java
com/bumptech/glide/manager/
DefaultConnectivityMonitorFactory.java
com/bumptech/glide/manager/RequestTracker.java
com/bumptech/glide/manager/
SingletonConnectivityReceiver.java
com/bumptech/glide/module/ManifestParser.java
com/bumptech/glide/request/SingleRequest.java
com/bumptech/glide/request/target/CustomViewTarget.java
com/bumptech/glide/request/target/ViewTarget.java
com/bumptech/glide/signature/
ApplicationVersionSignature.java
com/bumptech/glide/util/ContentLengthInputStream.java
com/bumptech/glide/util/pool/FactoryPools.java
com/ctc/wstx/compat/QNameCreator.java
com/ctc/wstx/shaded/msv_core/datatype/regexp/REUtil.java
com/ctc/wstx/shaded/msv_core/datatype/regexp/
RangeToken.java
com/ctc/wstx/shaded/msv_core/driver/textui/
ReportErrorHandler.java
com/ctc/wstx/shaded/msv_core/reader/xmlschema/
XMLSchemaReader.java
com/ctc/wstx/shaded/msv_core/scanner/dtd/DTDParser.java
com/ctc/wstx/shaded/msv_core/verifier/Verifier.java
com/ctc/wstx/shaded/msv_core/verifier/identity/
NO ISSUE SEVERITY STANDARDS FILES
FieldMatcher.java
com/ctc/wstx/shaded/msv_core/verifier/identity/
FieldsMatcher.java
com/ctc/wstx/shaded/msv_core/verifier/identity/
IDConstraintChecker.java
com/ctc/wstx/shaded/msv_core/verifier/identity/
SelectorMatcher.java
com/ctc/wstx/shaded/msv_core/verifier/regexp/
ContentModelAcceptor.java
com/ctc/wstx/shaded/msv_core/verifier/regexp/
ExpressionAcceptor.java
com/ctc/wstx/shaded/msv_core/verifier/regexp/xmlschema/
XSAcceptor.java
com/ctc/wstx/shaded/msv_core/writer/relaxng/
PatternWriter.java
com/ctc/wstx/sw/EncodingXmlWriter.java
com/kyn/
EventAnalytics$triggerCustomMixPanelEvents$1.java
com/kyn/
EventAnalytics$triggerCustomMoengageEvents$1.java
com/kyn/EventAnalytics$updateAppFlyerEvent$2.java
com/kyn/EventAnalytics.java
com/kyn/MainActivity$navigateTo$1.java
com/kyn/MainActivity.java
com/kyn/adapters/HomeAdapterLatest.java
com/kyn/adapters/
ReportAdapter$loadMoreDataWhenPageEnds$1.java
com/kyn/adapters/ReportAdapter.java
com/kyn/auth/FirebaseHelper.java
com/kyn/custom/views/GenericBottomSheetFragment.java
com/kyn/data/SafeApiCallKt$safeApiCall$2.java
com/kyn/data/repository/
LiveStreamRepositoryImpl$fetchUpcomingLiveStreams$2.java
com/kyn/data/repository/
ProfileRepository$getPostsByUserId$2.java
com/kyn/data/repository/
ProfileRepository$getScheduledKlips$2.java
com/kyn/helpers/
AzureBlobStorageManager$uploadVideo$2.java
com/kyn/helpers/ImageManager.java
com/kyn/helpers/KynApplication$appsflyerDeeplink$1.java
com/kyn/helpers/KynApplication.java
com/kyn/interceptor/LoggingInterceptor.java
com/kyn/models/home/ContentActionsViewModel.java
com/kyn/network/Connectivity.java
com/kyn/network/RefreshTokenManager.java
com/kyn/network/RestClient.java
com/kyn/network/interceptor/
NetworkConnectivityInterceptor.java
com/kyn/network/interceptor/
SendSavedTokenInterceptor.java
com/kyn/network/interceptor/UnauthorizedInterceptor.java
com/kyn/notification/BlogByIdViewModel.java
com/kyn/notification/FirebaseMessageReceiver.java
com/kyn/notification/KlipsByIdViewModel.java
com/kyn/notification/MyInAppListener.java
com/kyn/notification/PostByIdViewModel.java
com/kyn/notification/VideoByIdViewModel.java
com/kyn/ui/Follower/
FollowerViewModel$getFollowers$1.java
com/kyn/ui/Follower/FollowerViewModel$getFollowing$1.java
com/kyn/ui/activity/BaseActivity.java
com/kyn/ui/campaign/CampaignViewmodel.java
NO ISSUE SEVERITY STANDARDS FILES
com/kyn/ui/campaign/CreateHashTagViewmodel.java
com/kyn/ui/campaign/
HashTagPageViewModel$onShareAction$1.java
com/kyn/ui/campaign/HashTagPageViewModel.java
com/kyn/ui/campaign/
HashtagPublish$initViewModelKlipsPublish$1.java
com/kyn/ui/campaign/
HashtagPublish$initViewModelPostPublish$1.java
com/kyn/ui/campaign/HashtagPublish.java
com/kyn/ui/campaign/HashtagViewModel.java
com/kyn/ui/campaign/HashtagViewModelVideoView.java
com/kyn/ui/categoryevents/CategoryEventsListFragment.java
com/kyn/ui/components/models/FollowerUiModelKt.java
com/kyn/ui/components/models/LikelistUiModelKt.java
com/kyn/ui/eventdetails/EventDetailsFragment.java
com/kyn/ui/fragments/BaseFragment.java
com/kyn/ui/home/
BottomSheetDialogReport$initViewModel$1.java
com/kyn/ui/home/
HomePageFragmentKt$TrackVisibility$1.java
com/kyn/ui/home/HomePageFragmentKt.java
com/kyn/ui/home/HomePageViewModel$verifyOtp$2.java
com/kyn/ui/home/HomePageViewModel.java
com/kyn/ui/home/ReportViewmodel.java
com/kyn/ui/home/
UsernameUpdateViewModel$updateDefaultLocation$1.java
com/kyn/ui/home/
UsernameUpdateViewModel$updateUserDetails$1.java
com/kyn/ui/home/UsernameUpdateViewModel.java
com/kyn/ui/interest/EditProfileCategoryBottomSheet.java
com/kyn/ui/interest/InterestScreenBottomSheet.java
com/kyn/ui/interest/InterestScreenViewmodel.java
com/kyn/ui/klips/KlipListViewModel$onShareAction$2.java
com/kyn/ui/klips/KlipListViewModel$preCacheVideo$2.java
com/kyn/ui/klips/KlipListViewModel.java
com/kyn/ui/location/
AddLocationScreen$initViewModelLocation$1.java
com/kyn/ui/location/AddLocationScreen.java
com/kyn/ui/location/LocationScreenViewmodel.java
com/kyn/ui/location/presentation/viewmodel/
LocationViewModel$upsertGuestUserLocation$2.java
com/kyn/ui/location/presentation/viewmodel/
LocationViewModel$upsertRegisteredUserLocation$2.java
com/kyn/ui/login/LoginActivitityViewmodel.java
com/kyn/ui/login/LoginViewModel$createFCMToken$1.java
com/kyn/ui/login/LoginViewModel$createLogin$1.java
com/kyn/ui/login/LoginViewModel$fetchAdvertisingId$1.java
com/kyn/ui/login/LoginViewModel$verifyOtp$1.java
com/kyn/ui/login/LoginViewModel.java
com/kyn/ui/notices/viewmodel/
BlogDetailViewModel$onShareAction$2.java
com/kyn/ui/notices/viewmodel/BlogDetailViewModel.java
com/kyn/ui/postdetails/
PostDetailsViewModel$onShareAction$2.java
com/kyn/ui/postdetails/PostDetailsViewModel.java
com/kyn/ui/profile/BlogDeleteViewModel.java
com/kyn/ui/profile/
EditProfileActivity$initUsernameSuggestionsViewModel$1.java
com/kyn/ui/profile/EditProfileActivity.java
com/kyn/ui/profile/KlipsDeleteViewModel.java
com/kyn/ui/profile/PostDeleteViewModel.java
com/kyn/ui/profile/ProfileViewModel.java
com/kyn/ui/profile/VideoDeleteViewModel.java
NO ISSUE SEVERITY STANDARDS FILES
com/kyn/ui/profile/presentation/
ProfileFragment$observeNavigation$1.java
com/kyn/ui/profile/viewmodel/
ProfileViewModel$onShareAction$1.java
com/kyn/ui/profile/viewmodel/ProfileViewModel.java
com/kyn/ui/register/RegisterActivityViewmodel.java
com/kyn/ui/register/UsernameSuggestionsViewModel.java
com/kyn/ui/search/viewmodel/
SearchViewModel$fetchSearchData$1.java
com/kyn/ui/search/viewmodel/
SearchViewModel$onShareAction$2.java
com/kyn/ui/search/viewmodel/SearchViewModel.java
com/kyn/ui/settings/DeleteAccountViewModel.java
com/kyn/ui/settings/KYNFluencerActivity.java
com/kyn/ui/settings/SettingsActivity.java
com/kyn/ui/settings/viewmodel/
SettingsViewModel$createFCMRegister$1.java
com/kyn/ui/settings/viewmodel/
SettingsViewModel$initViewModelFcmRegister$1.java
com/kyn/ui/settings/viewmodel/SettingsViewModel.java
com/kyn/ui/video/VideoDetailViewModel.java
com/kyn/ui/video/VideoViewmodel.java
com/kyn/ui/video/kyn_live/ViewModelKynLive.java
com/kyn/ui/video/kyn_live/viewmodel/
LiveStreamViewModel.java
com/kyn/ui/video/videos/VideoCategoryViewModel.java
com/kyn/ui/video/videos/viewmodel/
VideoListViewModel$fetchVideosByCategories$1.java
com/kyn/ui/video/videos/viewmodel/
VideoListViewModel$onShareAction$2.java
com/kyn/ui/video/videos/viewmodel/
VideoListViewModel.java
com/kyn/ui/video/view_all_videos/viewmodel/
ViewAllVideosViewModel$onShareAction$2.java
com/kyn/ui/video/view_all_videos/viewmodel/
ViewAllVideosViewModel.java
com/kyn/utils/AppLogger.java
com/kyn/utils/CommonUtils.java
com/kyn/utils/SimpleExoPlayerCache.java
com/kyn/viewmodel/MainActivitityViewmodel.java
com/kyn/viewmodel/
MainViewModel$fetchAdvertisingId$1.java
com/kyn/viewmodel/
MainViewModel$fetchDefaultGuestUserToken$1.java
com/kyn/viewmodel/MainViewModel.java
com/microsoft/azure/storage/core/Logger.java
com/miui/referrer/commons/LogUtils.java
com/mixpanel/android/mpmetrics/AnalyticsMessages.java
com/mixpanel/android/mpmetrics/ConfigurationChecker.java
com/mixpanel/android/mpmetrics/MPConfig.java
com/mixpanel/android/mpmetrics/MPDbAdapter.java
com/mixpanel/android/mpmetrics/MixpanelAPI.java
com/mixpanel/android/mpmetrics/PersistentIdentity.java
com/mixpanel/android/mpmetrics/ResourceReader.java
com/mixpanel/android/mpmetrics/SessionMetadata.java
com/mixpanel/android/mpmetrics/SystemInformation.java
com/mixpanel/android/util/HttpService.java
com/mixpanel/android/util/MPLog.java
com/moengage/core/internal/logger/LogUtilKt.java
com/moengage/datatype/MOEDatetime.java
com/mux/stats/sdk/muxstats/MuxBaseExoPlayer.java
defpackage/FileDownloadCallback.java
io/grpc/android/AndroidChannelBuilder.java
NO ISSUE SEVERITY STANDARDS FILES
io/grpc/okhttp/internal/Platform.java
io/netty/util/Version.java
io/netty/util/internal/logging/MessageFormatter.java
junit/runner/BaseTestRunner.java
junit/runner/Version.java
junit/textui/TestRunner.java
org/slf4j/helpers/Util.java
reactor/netty/internal/shaded/reactor/pool/
SimpleDequePool.java
3 This App uses secure OWASP Show Files Suppress
SSL certificate MASVS: com/kyn/di/NetworkModule.java android_s
pinning to MSTG- com/kyn/network/RestClient.java com.thep
detect or NETWORK-4 io/grpc/okhttp/OkHttpChannelBuilder.java Suppress
prevent MITM io/grpc/okhttp/OkHttpServerBuilder.java android_s
attacks in io/grpc/util/AdvancedTlsX509TrustManager.java com.thep
secure io/netty/handler/ssl/JdkSslClientContext.java these file
communication io/netty/handler/ssl/JdkSslServerContext.java
channel. io/netty/handler/ssl/
ReferenceCountedOpenSslClientContext.java
io/netty/handler/ssl/
ReferenceCountedOpenSslServerContext.java
io/netty/handler/ssl/SslContext.java
io/netty/handler/ssl/util/FingerprintTrustManagerFactory.java
io/netty/handler/ssl/util/
FingerprintTrustManagerFactoryBuilder.java
4 Debug high CWE: com/kyn/config/BuildConfig.java Suppress
configuration CWE-919: android_a
enabled. Weaknesses in com.th
Production in Mobile Suppress
builds must not Applications android_a
be debuggable. OWASP Top in com.th
10: M1: from thes
Improper
Platform
Usage
OWASP
MASVS:
MSTG-
RESILIENCE-2
5 The App uses warning CWE: Show Files Suppress
an insecure CWE-330: Use com/amplitude/core/utilities/EventsFileManager.java android_i
Random of com/appsflyer/internal/AFb1gSDK.java com.thep
Number Insufficiently com/appsflyer/internal/AFc1iSDK.java Suppress
Generator. Random com/microsoft/azure/storage/RetryExponentialRetry.java android_i
Values com/mux/stats/sdk/core/util/UUID.java com.thep
OWASP Top io/grpc/internal/DnsNameResolver.java these file
10: M5: io/grpc/internal/ExponentialBackoffPolicy.java
Insufficient io/grpc/internal/PickFirstLoadBalancer.java
Cryptography io/grpc/internal/RetriableStream.java
OWASP io/grpc/okhttp/OkHttpClientTransport.java
MASVS: io/grpc/util/OutlierDetectionLoadBalancer.java
MSTG- io/grpc/util/RoundRobinLoadBalancer.java
CRYPTO-6 io/netty/handler/ssl/util/ThreadLocalInsecureRandom.java
io/netty/util/internal/PlatformDependent.java
io/netty/util/internal/ThreadLocalRandom.java
org/junit/runner/manipulation/Ordering.java
reactor/netty/internal/shaded/reactor/pool/introspection/
SamplingAllocationStrategy.java
6 App creates warning CWE: Show Files Suppress
temp file. CWE-276: io/netty/handler/codec/http/multipart/ android_t
Sensitive Incorrect AbstractDiskHttpData.java com.thep
NO ISSUE SEVERITY STANDARDS FILES
information Default io/netty/handler/ssl/util/SelfSignedCertificate.java Suppress
should never Permissions io/netty/util/internal/NativeLibraryLoader.java android_t
be written into OWASP Top io/netty/util/internal/PlatformDependent.java com.thep
a temp file. 10: M2: org/junit/rules/TemporaryFolder.java these file
Insecure Data
Storage
OWASP
MASVS:
MSTG-
STORAGE-2
7 IP Address warning CWE: Show Files Suppress
disclosure CWE-200: com/azure/storage/common/implementation/ android_i
Information connectionstring/StorageEmulatorConnectionString.java com.thep
Exposure com/microsoft/azure/storage/CloudStorageAccount.java Suppress
OWASP io/grpc/okhttp/OkHttpClientTransport.java android_i
MASVS: io/grpc/okhttp/OkHttpServerTransport.java com.thep
MSTG- io/netty/channel/epoll/LinuxSocket.java these file
CODE-2 io/netty/handler/codec/http2/HttpConversionUtil.java
io/netty/handler/codec/socksx/v4/Socks4ServerDecoder.java
io/netty/handler/codec/socksx/v5/
Socks5CommandRequestDecoder.java
io/netty/handler/ssl/util/
OpenJdkSelfSignedCertGenerator.java
io/netty/resolver/dns/
DefaultDnsServerAddressStreamProvider.java
8 MD5 is a weak warning CWE: Show Files Suppress
hash known to CWE-327: Use com/azure/storage/common/implementation/ in com.th
have hash of a Broken or UploadUtils.java Suppress
collisions. Risky com/microsoft/azure/storage/blob/BlobInputStream.java in com.th
Cryptographic com/microsoft/azure/storage/blob/BlobOutputStream.java from thes
Algorithm com/microsoft/azure/storage/blob/CloudPageBlob.java
OWASP Top com/microsoft/azure/storage/core/Utility.java
10: M5: com/microsoft/azure/storage/file/CloudFile.java
Insufficient com/microsoft/azure/storage/file/FileInputStream.java
Cryptography com/microsoft/azure/storage/file/FileOutputStream.java
OWASP io/netty/handler/codec/http/websocketx/WebSocketUtil.java
MASVS:
MSTG-
CRYPTO-4
9 SHA-1 is a warning CWE: io/netty/handler/codec/http/websocketx/WebSocketUtil.java Suppress
weak hash CWE-327: Use in com.th
known to have of a Broken or Suppress
hash collisions. Risky in com.th
Cryptographic from thes
Algorithm
OWASP Top
10: M5:
Insufficient
Cryptography
OWASP
MASVS:
MSTG-
CRYPTO-4
10 App uses warning CWE: Show Files Suppress
SQLite CWE-89: com/mixpanel/android/mpmetrics/MPDbAdapter.java android_s
Database and Improper com/moengage/core/internal/storage/database/ com.thep
execute raw Neutralization BaseDao.java Suppress
SQL query. of Special com/moengage/core/internal/storage/database/ android_s
Untrusted user Elements DatabaseHelper.java com.thep
input in raw used in an com/moengage/core/internal/storage/database/ these file
SQL queries SQL DatabaseUtilsKt.java
NO ISSUE SEVERITY STANDARDS FILES
can cause SQL Command
Injection. Also ('SQL
sensitive Injection')
information OWASP Top
should be 10: M7: Client
encrypted and Code Quality
written to the
database.
11 App can read/ warning CWE: Show Files Suppress
write to CWE-276: com/kyn/helpers/AzureBlobStorageManager.java android_r
External Incorrect com/kyn/ui/campaign/HashtagPublish.java com.thep
Storage. Any Default com/kyn/ui/create/CreateContentFragment.java Suppress
App can read Permissions com/kyn/ui/profile/EditProfileActivity.java android_r
data written to OWASP Top com/kyn/ui/profile/presentation/EditProfileFragment.java com.thep
External 10: M2: com/kyn/utils/CommonUtils.java these file
Storage. Insecure Data
Storage
OWASP
MASVS:
MSTG-
STORAGE-2
12 This App info OWASP com/moengage/core/internal/utils/CoreUtils.java Suppress
copies data to MASVS: android_c
clipboard. MSTG- com.thep
Sensitive data STORAGE-10 Suppress
should not be android_c
copied to com.thep
clipboard as these file
other
applications
can access it.
13 App can write info CWE: com/amplitude/android/utilities/AndroidStorage.java Suppress
to App CWE-276: android_w
Directory. Incorrect com.thep
Sensitive Default Suppress
Information Permissions android_w
should be OWASP com.thep
encrypted. MASVS: these file
MSTG-
STORAGE-14

Enterprise URL Shortener - Project Structure
No ratings yet
Enterprise URL Shortener - Project Structure
6 pages
Whampipe and Get2Hawaii Overview
No ratings yet
Whampipe and Get2Hawaii Overview
11 pages
Sodapdf
No ratings yet
Sodapdf
1 page
User Monitor App
No ratings yet
User Monitor App
1 page
Static Analysis
No ratings yet
Static Analysis
3 pages
Bmadcode Bmad Method
No ratings yet
Bmadcode Bmad Method
670 pages
Releaselog-20240912 2
No ratings yet
Releaselog-20240912 2
6 pages
IQService Log Analysis
No ratings yet
IQService Log Analysis
8 pages
Juicy Paths
No ratings yet
Juicy Paths
2 pages
Aem 2
No ratings yet
Aem 2
14 pages
WSTG (Web Application Security Testing) OWASP - Mind Map
No ratings yet
WSTG (Web Application Security Testing) OWASP - Mind Map
1 page
Metro App Dump Desktop-1ctlk38 2022-04-13
No ratings yet
Metro App Dump Desktop-1ctlk38 2022-04-13
3 pages
Selenium Framework Guide
No ratings yet
Selenium Framework Guide
4 pages
Compress Images Java Example - Memorynotfound
No ratings yet
Compress Images Java Example - Memorynotfound
10 pages
Upload Your Map To WorkAdventure - WorkAdventure Documentation
No ratings yet
Upload Your Map To WorkAdventure - WorkAdventure Documentation
1 page
File List
No ratings yet
File List
4 pages
Hotel Management System - vbproj.FileListAbsolute
No ratings yet
Hotel Management System - vbproj.FileListAbsolute
2 pages
One List For All Micro
No ratings yet
One List For All Micro
430 pages
Microsoft App and Service List
No ratings yet
Microsoft App and Service List
4 pages
NetBeans 12.6 with JDK 1.8.0_202 Setup
No ratings yet
NetBeans 12.6 with JDK 1.8.0_202 Setup
33 pages
Dump
No ratings yet
Dump
12 pages
BEA WebLogic Server Configuration Files
No ratings yet
BEA WebLogic Server Configuration Files
21 pages
Enhanced Bug Bounty Dorks
No ratings yet
Enhanced Bug Bounty Dorks
2 pages
Sharing App Deployment: Android Device (Smartphone, Tablet, Etc.)
No ratings yet
Sharing App Deployment: Android Device (Smartphone, Tablet, Etc.)
1 page
Page 010
No ratings yet
Page 010
1 page
Dump
No ratings yet
Dump
12 pages
Android App File Structure
No ratings yet
Android App File Structure
9 pages
Database Schema Files
No ratings yet
Database Schema Files
8 pages
Apex Reference Guide: Version 52.0, Summer '21
No ratings yet
Apex Reference Guide: Version 52.0, Summer '21
3,191 pages
Metasploit - Posts
No ratings yet
Metasploit - Posts
14 pages
IBM ICC for SAP Configuration Guide
No ratings yet
IBM ICC for SAP Configuration Guide
3 pages
Android App Security Scan Report
No ratings yet
Android App Security Scan Report
14 pages
SF Dump
No ratings yet
SF Dump
27 pages
Getting Started with Sublime Text 3
No ratings yet
Getting Started with Sublime Text 3
41 pages
Config
No ratings yet
Config
1 page
Component Android
No ratings yet
Component Android
533 pages
Page 009
No ratings yet
Page 009
1 page
Doxygen of OTRS Cvs Ref Man
No ratings yet
Doxygen of OTRS Cvs Ref Man
379 pages
Dump
No ratings yet
Dump
10 pages
Unused and Unlisted Dependencies Report
No ratings yet
Unused and Unlisted Dependencies Report
27 pages
Travelpidia App Overview
No ratings yet
Travelpidia App Overview
1 page
Process Intelligence Dependency Licenses
No ratings yet
Process Intelligence Dependency Licenses
41 pages
Learningcourses
No ratings yet
Learningcourses
17 pages
BAS Subcommands Part2
No ratings yet
BAS Subcommands Part2
3 pages
ANEHelper Push Notifications Log
No ratings yet
ANEHelper Push Notifications Log
90 pages
Com - Amepro.pdv
No ratings yet
Com - Amepro.pdv
13 pages
Available Tools With The Fusion 360 Command Line
No ratings yet
Available Tools With The Fusion 360 Command Line
60 pages
Web All Content Types
No ratings yet
Web All Content Types
41 pages
CoreDe Android App Requirements Document
No ratings yet
CoreDe Android App Requirements Document
8 pages
Firmware and Addons SHA256 Checksums
No ratings yet
Firmware and Addons SHA256 Checksums
5 pages
LD Config
No ratings yet
LD Config
9 pages
Android File Downloads and Cache Data
No ratings yet
Android File Downloads and Cache Data
28 pages
My Udemy Courses - Ramesh Fadatare
No ratings yet
My Udemy Courses - Ramesh Fadatare
1 page
Google Domains and Services List
100% (1)
Google Domains and Services List
157 pages
Getta
No ratings yet
Getta
9 pages
Hotel Management System Files Overview
No ratings yet
Hotel Management System Files Overview
1 page
Master Wordlist
No ratings yet
Master Wordlist
170 pages
English Us
No ratings yet
English Us
5 pages
Summative Assessment 7.2.2 I. MULTIPLE CHOICE. Directions: Choose The Correct Answer by Writing The Letter of Your Choice
100% (1)
Summative Assessment 7.2.2 I. MULTIPLE CHOICE. Directions: Choose The Correct Answer by Writing The Letter of Your Choice
3 pages
Hong Kong Broadband Case June 2022
No ratings yet
Hong Kong Broadband Case June 2022
14 pages
Klaus Von Beyme Pioneer in The Study of Political Theory and Comparative Politics 1st Edition Klaus Von Beyme Auth
No ratings yet
Klaus Von Beyme Pioneer in The Study of Political Theory and Comparative Politics 1st Edition Klaus Von Beyme Auth
196 pages
Protocols of Application Layer
No ratings yet
Protocols of Application Layer
7 pages
L3 RF Troubleshooting Guide XT1650-01-XT1650-02-XT1650-03-XT1650-05 V1.0.pdf MOTO Z PDF
No ratings yet
L3 RF Troubleshooting Guide XT1650-01-XT1650-02-XT1650-03-XT1650-05 V1.0.pdf MOTO Z PDF
298 pages
Matrices Study Guide
No ratings yet
Matrices Study Guide
26 pages
Ict Notes 1.
No ratings yet
Ict Notes 1.
2 pages
5-The Triangle Inequality Theorem PDF
No ratings yet
5-The Triangle Inequality Theorem PDF
2 pages
Solution Manual For Data Structures Algorithms and Software Principles in C 1st Edition
No ratings yet
Solution Manual For Data Structures Algorithms and Software Principles in C 1st Edition
27 pages
Dielectric Shielding Comparison: Created in COMSOL Multiphysics 5.3
No ratings yet
Dielectric Shielding Comparison: Created in COMSOL Multiphysics 5.3
16 pages
2025 COPPER Maneckji
No ratings yet
2025 COPPER Maneckji
7 pages
G7 Privacy and Information Technology
No ratings yet
G7 Privacy and Information Technology
20 pages
21EC642
No ratings yet
21EC642
1 page
Linux For Devops
No ratings yet
Linux For Devops
16 pages
Knit Paint PDF
100% (2)
Knit Paint PDF
16 pages
Aa23 352a Stopransomware Play Ransomware
No ratings yet
Aa23 352a Stopransomware Play Ransomware
10 pages
Documents - Pub Stability Analysis For Diaphragm Walls To Din 4126 Ggu Trench
No ratings yet
Documents - Pub Stability Analysis For Diaphragm Walls To Din 4126 Ggu Trench
43 pages
Frequency Manager + Scanner User's Guide
No ratings yet
Frequency Manager + Scanner User's Guide
38 pages
Internship PPT
No ratings yet
Internship PPT
17 pages
Emerging Technologies For Business Processes
No ratings yet
Emerging Technologies For Business Processes
19 pages
Leap Data Sheet Gateway
No ratings yet
Leap Data Sheet Gateway
3 pages
Poly Solutions For Microsoft Teams Jan 22
No ratings yet
Poly Solutions For Microsoft Teams Jan 22
31 pages
Cybertwin Se
No ratings yet
Cybertwin Se
36 pages
Lab 5
No ratings yet
Lab 5
9 pages
BCOS-184 Ignouassignmentguru - Com DEC21
No ratings yet
BCOS-184 Ignouassignmentguru - Com DEC21
6 pages
Nptel: Industry 4.0: Cyber-Physical Systems and Next-Generation Sensors
No ratings yet
Nptel: Industry 4.0: Cyber-Physical Systems and Next-Generation Sensors
131 pages
API Dokumen - Tempahan
No ratings yet
API Dokumen - Tempahan
5 pages
4G Paper PDF
No ratings yet
4G Paper PDF
3 pages
Aplikasi Input Data Mahasiswa Android
No ratings yet
Aplikasi Input Data Mahasiswa Android
9 pages
Protect Trade Secrets with Blockchain
No ratings yet
Protect Trade Secrets with Blockchain
3 pages

Static Analysis

Uploaded by

Static Analysis

Uploaded by

NO ISSUE SEVERITY STANDARDS FILES

1 Files may warning CWE: Show Files Suppress

You might also like