Escape Unicode null character before parsing security report (!140103) · Merge requests · GitLab.org / GitLab

Mehmet Emin INAC requested to merge minac_417916_handle_unicode_null_characters into master Dec 18, 2023

What does this MR do and why?

As the Unicode null character(\u0000) can not be stored by PostgreSQL, we are escaping it while parsing the security report artifacts by this change. We will be notifying the user with a warning message shown on the "pipeline security tab" if the artifact produced by the analyzer contains a Unicode null character.

Screenshots or screen recordings

Before	After

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Dec 19, 2023 by Mehmet Emin INAC

Escape Unicode null character before parsing security report

What does this MR do and why?

Screenshots or screen recordings

MR acceptance checklist

Merge request reports