You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When creating assets via the api (POST /api/assets/) the security_objectives values is not properly validated.
It checks for an integer but not for a max value of >=3.
This causes an internal server error and the asset page fails to load.
This issue is similar to #1329, the fix for this issue does not solve this.
When creating assets via the api (POST /api/assets/) the
security_objectivesvalues is not properly validated.It checks for an integer but not for a max value of >=3.
This causes an internal server error and the asset page fails to load.
This issue is similar to #1329, the fix for this issue does not solve this.
To Reproduce
Steps to reproduce the behavior:
{ "is_published": true, "name": "Some name", "type": "PR", "folder": "<CHANGE ME>", "security_objectives": { "objectives": { "confidentiality": { "value": 4, "is_enabled": true } } } }Expected behavior
Block the request with "4 is not a valid integer for value"...
Screenshots
If applicable, add screenshots to help explain your problem.
Environment (please complete the following information):
Additional context
See thread "Asset import with API" in the "tech-chat" channel on discord
The text was updated successfully, but these errors were encountered: