From fb89a5ce244c8ced1883ef1b097b1661ae92a2d8 Mon Sep 17 00:00:00 2001 From: MikaelKrats <mikael.krats@gmail.com> Date: Wed, 22 Feb 2023 19:50:48 +0200 Subject: [PATCH] Deleted an misunderstaing from the weekly report and added unmentioned security annotation --- docs/WeeklyReport4.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/WeeklyReport4.md b/docs/WeeklyReport4.md index 08ddf8b3..f7dca24b 100644 --- a/docs/WeeklyReport4.md +++ b/docs/WeeklyReport4.md @@ -39,11 +39,11 @@ Added check for login. Users have now log into the site in order to access any o A02 Cryptographic failures User information is now saved to the database. Passwords are encrypted properly. -A07 identification and Authentication failures -Implemented a third party authentication to make the authentication stronger. You now must have a token to make a API request - A04:2021-Insecure Design Made sure that no user information (such as emails) were publicly available to be taken advantage of. -A06:2021 – Vulnerable and Outdated Components +A08:2021 – Software and Data Integrity Failures Made sure that all of the used libraries and dependencies are from trusted repositories + +A05:2021 – Security Misconfiguration +Identified issue where direct error messages would be sent to the end users. \ No newline at end of file -- GitLab