External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-06-18 05:07:42 -02:30
Code Issues Packages Projects Releases Wiki Activity

AAP-79142 fix: resolve SonarCloud security rating C (#16503)

Browse Source 
fix: resolve SonarCloud security rating C (AAP-79142)

Replace regex-based substring checks with plain `in` operator in awxkit
page.py to eliminate ReDoS vulnerability (python:S5852). Remove stray
empty Pipfile that triggered missing lockfile warning (text:S8565).

Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Rodrigo Toshiaki Horie
2026-06-15 17:41:53 -03:00
committed by GitHub
parent 849f5f796c
commit 34f34e058b
2 changed files with 10 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
awx/api/urls/Pipfile
View File

21
awxkit/awxkit/api/pages/page.py
View File

@@ -2,7 +2,6 @@ from contextlib import suppress
import inspect
import logging
import json
import re
from requests import Response
import http.client as http
@@ -23,31 +22,31 @@ get_registered_page = _page_registry.get
def is_license_invalid(response):
if re.match(r".*Invalid license.*", response.text):
if "Invalid license" in response.text:
return True
if re.match(r".*Missing 'eula_accepted' property.*", response.text):
if "Missing 'eula_accepted' property" in response.text:
return True
if re.match(r".*'eula_accepted' must be True.*", response.text):
if "'eula_accepted' must be True" in response.text:
return True
if re.match(r".*Invalid license data.*", response.text):
if "Invalid license data" in response.text:
return True
def is_license_exceeded(response):
if re.match(r".*license range of.*instances has been exceeded.*", response.text):
if "license range of" in response.text and "instances has been exceeded" in response.text:
return True
if re.match(r".*License count of.*instances has been reached.*", response.text):
if "License count of" in response.text and "instances has been reached" in response.text:
return True
if re.match(r".*License count of.*instances has been exceeded.*", response.text):
if "License count of" in response.text and "instances has been exceeded" in response.text:
return True
if re.match(r".*License has expired.*", response.text):
if "License has expired" in response.text:
return True
if re.match(r".*License is missing.*", response.text):
if "License is missing" in response.text:
return True
def is_duplicate_error(response):
if re.match(r".*already exists.*", response.text):
if "already exists" in response.text:
return True