openstack
/
ironic-inspector
Code Issues Proposed changes
ironic-inspector/ironic_inspector/test
History
Zane Bitter 67ff87ebca Eliminate SQL injection vulnerability in node_cache 
In node_cache.find_node() we were constructing a raw SQL query using
unescaped data that came in on the wire. This presented an SQL injection
vulnerability. To avoid this, use the query builder from SQLAlchemy to
ensure that any input strings are correctly escaped.

Change-Id: I2b0ffa307ec1aa57538733f2e454d2d7e994d656
Story: #2005678
Task: 30992
(cherry picked from commit 9d107900b2)
 		2019-05-21 10:47:31 +02:00
..
unit Eliminate SQL injection vulnerability in node_cache 2019-05-21 10:47:31 +02:00
__init__.py Remove the generic eventlet monkey patch from test 2016-11-18 10:35:53 +01:00
base.py Reset cached extension managers in the unit tests 2019-03-08 13:18:02 +01:00
functional.py Wrap rpc server into oslo.service 2018-10-23 09:17:42 +08:00