Skip to content

Commit

Permalink
Fix code scanning alert no. 717: Log Injection
Browse files Browse the repository at this point in the history 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
  • Loading branch information
@cap-ang @github-advanced-security
cap-ang and github-advanced-security[bot] authored Oct 25, 2024
1 parent 36ead2c commit fd599f3
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion src/main/java/it/gov/pagopa/fdr/service/psps/PspsService.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -338,8 +338,9 @@ public void publishByFdr(String action, String pspId, String fdr, boolean intern
.thenAccept(value -> {
log.info("End of saveOnStorage storage on BlobStorage of FDR payment entities");
fdrEntity.delete();
String sanitizedFdr = fdr.replace("\n", "").replace("\r", "");
log.infof(
"Delete FdrPaymentInsertEntity by fdr[%s], pspId[%s]", fdrEntity.getRevision(), fdr, pspId);
"Delete FdrPaymentInsertEntity by fdr[%s], pspId[%s]", fdrEntity.getRevision(), sanitizedFdr, pspId);

Check failure

Code scanning / CodeQL

Log Injection High

This log entry depends on a
user-provided value
Loading
.
This log entry depends on a
user-provided value
Loading
.
FdrPaymentInsertEntity.deleteByFdrAndPspId(fdr, pspId);
log.info("End delete deleteByFdrAndPspId");
this.addToConversionQueue(internalPublish, fdrEntity);
Expand Down

0 comments on commit fd599f3

Please sign in to comment.