Feature/ast 107884 all poc

[cx-rahul-pidde]

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Describe the purpose of this PR along with any background information and the impacts of the proposed change.

References

Include supporting link to GitHub Issue/PR number

Testing

Describe how this change was tested. Be specific about anything not tested and reasons why. If this solution has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.

Please include any manual steps for testing end-to-end or functionality not covered by unit/integration tests.

Checklist

• I have added documentation for new/changed functionality in this PR (if applicable).
• All active GitHub checks for tests, formatting, and security are passing
• The correct base branch is being used

[github-actions]

Checkmarx One – Scan Summary & Details – 3975dcf5-6db3-4101-aa01-dafa85e348c2

---

New Issues (2)

Checkmarx found the following issues in this Pull Request

#	Severity	Issue	Source File / Package	Checkmarx Insight
1		CVE-2024-30105	Nuget-System.Text.Json-7.0.3	details Recommended version: 8.0.5 Description: The .NET Core and Visual Studio are vulnerable to Denial of Service (DoS) Vulnerability. This issue affects System.Text.Json versions 7.0.0-preview... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package
2		CVE-2024-48924	Nuget-MessagePack-2.5.108	details Recommended version: 2.5.187 Description: The MessagePack is an extremely fast serializer for C#. When this library is used to deserialize messagepack versions through 2.5.172 and 2.6.95-al... Attack Vector: NETWORK Attack Complexity: LOW Vulnerable Package

---

Policy Management Violations (2)

Policy Name	Rule(s)	Break Build
[SAST-ML0] Not allowed NEW Sast vulnerabilities		true
Commercial packages		true