Skip to content

Commit

Permalink
Fix code scanning alert no. 538: Log Injection
Browse files Browse the repository at this point in the history 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
  • Loading branch information
@jacopocarlini @github-advanced-security
jacopocarlini and github-advanced-security[bot] authored Sep 26, 2024
1 parent 7e91c31 commit e5548b3
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion src/main/java/it/gov/pagopa/payments/controller/receipt/impl/PaymentsController.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,13 +36,14 @@ public PaymentsController(PaymentsService paymentsService) {
public ResponseEntity<String> getReceiptByIUV(
String organizationFiscalCode, String iuv, String segregationCodes) {
String sanitizedOrganizationFiscalCode = sanitizeInput(organizationFiscalCode);
String sanitizedIuv = sanitizeInput(iuv);
log.debug(
String.format(
LOG_BASE_HEADER_INFO,
"GET",
String.format(LOG_BASE_PARAMS_DETAIL, sanitizedOrganizationFiscalCode)
+ "; iuv= "
+ iuv
+ sanitizedIuv
+ "; validSegregationCodes= "
+ segregationCodes));

Check failure

Code scanning / CodeQL

Log Injection High

This log entry depends on a
user-provided value
Loading
.

Expand Down

0 comments on commit e5548b3

Please sign in to comment.