-
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
0 parents
commit 9659d81
Showing
1,114 changed files
with
142,613 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,28 @@ | ||
version: "2" | ||
plugins: | ||
fixme: | ||
enabled: true | ||
duplication: | ||
enabled: true | ||
checks: | ||
file-lines: | ||
config: | ||
threshold: 300 | ||
method-lines: | ||
config: | ||
threshold: 30 | ||
method-complexity: | ||
config: | ||
threshold: 7 | ||
similar-code: | ||
enabled: false | ||
identical-code: | ||
enabled: false | ||
exclude_patterns: | ||
- '**/*conf.js' | ||
- 'Gruntfile.js' | ||
- 'data/datacreator.ts' | ||
- 'frontend/src/hacking-instructor/**/*.ts' | ||
- 'frontend/src/assets/private/*.js' | ||
- 'lib/logger.ts' | ||
- 'data/static/codefixes/**' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
version: 1 | ||
update_configs: | ||
- package_manager: "javascript" | ||
directory: "/" | ||
update_schedule: "live" | ||
target_branch: "develop" | ||
default_reviewers: | ||
- "bkimminich" | ||
default_labels: | ||
- "dependencies" | ||
ignored_updates: | ||
- match: | ||
dependency_name: "express-jwt" | ||
version_requirement: "0.1.3" | ||
- match: | ||
dependency_name: "sanitize-html" | ||
version_requirement: "1.4.2" | ||
- match: | ||
dependency_name: "unzipper" | ||
version_requirement: "0.9.15" | ||
- match: | ||
dependency_name: "jsonwebtoken" | ||
version_requirement: "0.4.0" | ||
- package_manager: "javascript" | ||
directory: "/frontend" | ||
update_schedule: "live" | ||
target_branch: "develop" | ||
default_reviewers: | ||
- "bkimminich" | ||
default_labels: | ||
- "dependencies" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
{ | ||
"extensions": [ | ||
"eg2.vscode-npm-script", | ||
"angular.ng-template", | ||
"dbaeumer.vscode-eslint", | ||
"stylelint.vscode-stylelint" | ||
], | ||
"settings": { | ||
"eslint.workingDirectories": [ | ||
{ "mode": "auto" } | ||
] | ||
}, | ||
"postCreateCommand": "export NG_CLI_ANALYTICS=ci && export NG_FORCE_TTY=false && npm i -g @angular/cli && npm install && unset NG_FORCE_TTY" | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
.git/ | ||
monitoring/ | ||
node_modules/ | ||
screenshots/ | ||
test/ | ||
build/reports/ | ||
dist/ | ||
vagrant/ | ||
logs/ | ||
Dockerfile | ||
.npmrc | ||
/bom.json | ||
/bom.xml | ||
|
||
# Pattern is *not covered* by node_modules/ above no matter what IntelliJ says! | ||
frontend/node_modules/ | ||
frontend/dist/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,46 @@ | ||
/* | ||
* Copyright (c) 2014-2023 Bjoern Kimminich & the OWASP Juice Shop contributors. | ||
* SPDX-License-Identifier: MIT | ||
*/ | ||
|
||
module.exports = { | ||
extends: 'standard-with-typescript', | ||
env: { | ||
browser: true, | ||
node: true, | ||
jasmine: true, | ||
mocha: true, | ||
jest: true | ||
}, | ||
globals: { | ||
Atomics: 'readonly', | ||
SharedArrayBuffer: 'readonly' | ||
}, | ||
parserOptions: { | ||
ecmaVersion: 2018, | ||
project: './tsconfig.json' | ||
}, | ||
ignorePatterns: [ | ||
'app/private/**', | ||
'vagrant/**', | ||
'frontend/**', | ||
'data/static/codefixes/**', | ||
'dist/**' | ||
], | ||
overrides: [ | ||
{ | ||
files: ['**/*.ts'], | ||
parser: '@typescript-eslint/parser', | ||
rules: { | ||
'no-void': 'off', // conflicting with recommendation from @typescript-eslint/no-floating-promises | ||
// FIXME warnings below this line need to be checked and fixed. | ||
'@typescript-eslint/no-misused-promises': 'off', | ||
'@typescript-eslint/explicit-function-return-type': 'off', | ||
'@typescript-eslint/restrict-plus-operands': 'off', | ||
'@typescript-eslint/strict-boolean-expressions': 'off', | ||
'@typescript-eslint/restrict-template-expressions': 'off', | ||
'@typescript-eslint/no-var-requires': 'off' | ||
} | ||
} | ||
] | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
/vagrant/ @wurstbrot | ||
/test/cypress/ @ShubhamPalriwala | ||
/frontend/src/app/score-board-preview @J12934 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
custom: https://sponsor.owasp-juice.shop | ||
github: OWASP |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,63 @@ | ||
--- | ||
name: "\U0001F41BBug report" | ||
about: Report a bug in OWASP Juice Shop | ||
title: '[π] ' | ||
labels: bug | ||
assignees: '' | ||
|
||
--- | ||
|
||
<!--π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π | ||
To expedite issue processing please search open and closed issues before submitting a new one. | ||
Existing issues often contain information about workarounds, resolution, or progress updates. | ||
Please also make sure to check the official [Troubleshooting guide](https://pwning.owasp-juice.shop/appendix/troubleshooting.html) before opening a bug report. | ||
π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π --> | ||
|
||
# :bug: Bug report | ||
|
||
## Description | ||
|
||
<!-- βοΈ--> | ||
A clear and concise description of the problem... | ||
|
||
|
||
### Is this a regression? | ||
|
||
<!-- Did this behavior use to work in the previous version? --> | ||
<!-- βοΈ--> | ||
Yes, the previous version in which this bug was not present was: `x.y.z` | ||
|
||
|
||
## :microscope: Minimal Reproduction | ||
|
||
<!-- βοΈSimple steps to reproduce this bug. | ||
Issues that don't have enough info and can't be reproduced will be labeled with "missing information" and closed shortly afterwards. | ||
--> | ||
|
||
|
||
## :fire: Exception or Error | ||
|
||
<pre><code> | ||
<!-- If the issue is accompanied by an exception or an error, please share your log below: --> | ||
<!-- βοΈ--> | ||
|
||
</code></pre> | ||
|
||
|
||
## :deciduous_tree: Your Environment | ||
|
||
<pre><code> | ||
<!-- run `node -v && npm -v` and paste output below --> | ||
<!-- βοΈ--> | ||
|
||
</code></pre> | ||
|
||
|
||
### Additional Information | ||
|
||
<!-- βοΈIs this a browser specific issue? If so, please specify the browser and version. --> | ||
<!-- βοΈDo any of these matter: operating system, Docker environment, cloud environment, ...? If so, please mention it below. --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,43 @@ | ||
--- | ||
name: "βChallenge idea" | ||
about: Idea for a new hacking challenge in OWASP Juice Shop | ||
title: '[β] ' | ||
labels: challenge | ||
assignees: '' | ||
|
||
--- | ||
|
||
<!--π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π | ||
To expedite issue processing please search open and closed issues before submitting a new one. | ||
Existing issues often contain information about workarounds, resolution, or progress updates. | ||
π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π --> | ||
|
||
# :star: Challenge idea | ||
|
||
### Description | ||
|
||
<!-- βοΈ--> A clear and concise description of the new hacking challenge and why the Juice Shop needs it... | ||
|
||
### Underlying vulnerability/ies | ||
|
||
<!-- βοΈ--> Security vulnerabilities or design flaws this challenge will be based on. Optimally include CWE, OWASP or similar references. | ||
|
||
### Expected difficulty | ||
|
||
<!-- Do you already have an idea about the expected difficulty of the challenge? --> | ||
<!-- βοΈ --> | ||
|
||
| :heavy_check_mark: / :x: | Difficulty | | ||
|:------------------------:|:-------------------------------------| | ||
| :grey_question: | :star: | | ||
| :grey_question: | :star::star: | | ||
| :grey_question: | :star::star::star: | | ||
| :grey_question: | :star::star::star::star: | | ||
| :grey_question: | :star::star::star::star::star: | | ||
| :grey_question: | :star::star::star::star::star::star: | | ||
|
||
### Possible attack flow | ||
|
||
<!-- βοΈ--> Have you considered how the challenge could be exploited by the attacker? |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
contact_links: | ||
- name: βSupport request | ||
url: https://gitter.im/bkimminich/juice-shop | ||
about: Questions and requests for support |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
--- | ||
name: "\U0001F680Feature request" | ||
about: Suggest a feature for OWASP Juice Shop | ||
title: '[π] ' | ||
labels: feature | ||
assignees: '' | ||
|
||
--- | ||
|
||
<!--π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π | ||
To expedite issue processing please search open and closed issues before submitting a new one. | ||
Existing issues often contain information about workarounds, resolution, or progress updates. | ||
π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π --> | ||
|
||
# :rocket: Feature request | ||
|
||
### Description | ||
|
||
<!-- βοΈ--> A clear and concise description of the problem or missing capability... | ||
|
||
|
||
### Solution ideas | ||
|
||
<!-- βοΈ--> If you have a solution in mind, please describe it. | ||
|
||
|
||
### Possible alternatives | ||
|
||
<!-- βοΈ--> Have you considered any alternative solutions or workarounds? |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
<!--π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π | ||
You can expedite processing of your PR by using this template to provide context | ||
and additional information. Before actually opening a PR please make sure that it | ||
does NOT fall into any of the following categories | ||
π« Spam PRs (accidental or intentional) - these will result in a 7 / 30 / β days ban from | ||
interacting with the project depending on reoccurrence and severity. You can find more | ||
information [here](https://pwning.owasp-juice.shop/companion-guide/latest/part3/contribution.html#_handling_of_spam_prs). | ||
π« Lazy typo fixing PRs - if you fix a typo in a file, your PR will only be merged | ||
if all other typos in the same file are also fixed with the same PR | ||
π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π π --> | ||
|
||
### Description | ||
|
||
<!-- βοΈ--> | ||
A clear and concise summary of the change and which issue (if any) it fixes. Should also include relevant motivation and context. | ||
|
||
Resolved or fixed issue: <!-- βοΈ Add GitHub issue number in format `#0000` or `none` --> | ||
|
||
### Affirmation | ||
|
||
- [ ] My code follows the [CONTRIBUTING.md](https://github.com/juice-shop/juice-shop/blob/master/CONTRIBUTING.md) guidelines |
Oops, something went wrong.