Update application-9.0.yml

[kmcdon83]

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Describe the purpose of this PR along with any background information and the impacts of the proposed change.

References

Include supporting link to GitHub Issue/PR number

Testing

Describe how this change was tested. Be specific about anything not tested and reasons why. If this solution has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.

Please include any manual steps for testing end-to-end or functionality not covered by unit/integration tests.

Checklist

• I have added documentation for new/changed functionality in this PR (if applicable). If documentation is a Wiki Update, please indicate desired changes within PR MD Comment
• All active GitHub checks for tests, formatting, and security are passing
• The correct base branch is being used

[kmcdon83]

Checkmarx One – Scan Summary & Details – 8ddf2271-44c0-4b8a-933f-4088c0bddfe3

New Issues (14)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 242	details Method pushRequest at line 242 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 169	details Method pushRequest at line 169 of /src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java gets user input from e... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java: 169	details Method pushRequest at line 169 of /src/main/java/com/checkmarx/flow/controller/bitbucket/cloud/BitbucketCloudController.java gets user input from e... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 75	details Method latestScanResults at line 75 of /src/main/java/com/checkmarx/flow/controller/FlowController.java gets user input from element status. This e... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 74	details Method latestScanResults at line 74 of /src/main/java/com/checkmarx/flow/controller/FlowController.java gets user input from element category. This... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 73	details Method latestScanResults at line 73 of /src/main/java/com/checkmarx/flow/controller/FlowController.java gets user input from element cwe. This elem... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/FlowController.java: 72	details Method latestScanResults at line 72 of /src/main/java/com/checkmarx/flow/controller/FlowController.java gets user input from element severity. This... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 242	details Method pushRequest at line 242 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 242	details Method pushRequest at line 242 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/TfsController.java: 55	details Method pullPushRequest at line 55 of /src/main/java/com/checkmarx/flow/controller/TfsController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 100	details Method pullRequest at line 100 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 100	details Method pullRequest at line 100 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/GitHubController.java: 100	details Method pullRequest at line 100 of /src/main/java/com/checkmarx/flow/controller/GitHubController.java gets user input from element body. This elemen... Attack Vector
	Log_Forging	/src/main/java/com/checkmarx/flow/controller/TfsController.java: 55	details Method pullPushRequest at line 55 of /src/main/java/com/checkmarx/flow/controller/TfsController.java gets user input from element body. This elemen... Attack Vector

Fixed Issues (9)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 13
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 12
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 11
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 16
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 17
	Client_Hardcoded_Domain	/src/main/resources/templates/index.html: 18
	Heap_Inspection	/src/main/java/com/checkmarx/flow/config/ServiceNowProperties.java: 18
	Heap_Inspection	/src/main/java/com/checkmarx/flow/config/FlowProperties.java: 328
	Heap_Inspection	/src/test/resources/cucumber/data/input-code-samples/DOS_Login.java: 87