You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cordova.apache.org by "Joe Bowser (JIRA)" <ji...@apache.org> on 2017/10/10 18:21:00 UTC
[jira] [Updated] (CB-13418) AppScan Source has 143 findings for
Android
[ https://issues.apache.org/jira/browse/CB-13418?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Joe Bowser updated CB-13418:
----------------------------
Priority: Minor (was: Major)
Given the nature of Cordova itself, I don't trust any of the Java code scanning tools, since many of them are littered with false positives that we've addressed in the past. If someone wants to file issues against this, we'll address them, but I'm going to consider this a low priority.
> AppScan Source has 143 findings for Android
> -------------------------------------------
>
> Key: CB-13418
> URL: https://issues.apache.org/jira/browse/CB-13418
> Project: Apache Cordova
> Issue Type: Bug
> Components: cordova-android
> Affects Versions: 7.0.1
> Environment: cordova-android 6.3.0
> IBM AppScan Source
> Reporter: Christopher Lang
> Assignee: Joe Bowser
> Priority: Minor
>
> Upon running IBM AppScan Source on my Android code generated by Cordova, AppScan had 143 findings 36 of which were high severity. All of the findings are in the Java code generated by Cordova. With both of these (Cordova, AppScan) being popular software tools, there should be some documentation about the interaction between the two and how to address these findings.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org
For additional commands, e-mail: issues-help@cordova.apache.org