OS Core Common - Spring 5 merge requestshttps://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests2023-08-18T13:07:22Zhttps://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/121fix fossa NOTICE -- for getting latest rc package2023-08-18T13:07:22ZNeelesh Thakurfix fossa NOTICE -- for getting latest rc packageM9 - Release 0.12https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/120fix fossa NOTICE to get latest rc package2023-08-18T13:07:23ZNeelesh Thakurfix fossa NOTICE to get latest rc packageM9 - Release 0.12https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/119Sanitize untrusted text before using in Hibernate2022-09-16T08:33:16ZRobert Chadwick [Schlumberger]Sanitize untrusted text before using in HibernateEscape untrusted text so a malicious user is unable to trigger remote code execution exploits by sending special text within the JSON body.
Hibernate will interpolate text surrounded by `${}` which can include arbitrary Java. Untrusted...Escape untrusted text so a malicious user is unable to trigger remote code execution exploits by sending special text within the JSON body.
Hibernate will interpolate text surrounded by `${}` which can include arbitrary Java. Untrusted data must be escaped to prevent these values from being interpolated during the call to `ConstraintValidatorContext.buildConstraintViolationWithTemplate()`.
Linked Gitlab issue: https://community.opengroup.org/osdu/platform/system/home/-/issues/90M9 - Release 0.12Robert Chadwick [Schlumberger]Robert Chadwick [Schlumberger]https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/117include null in query response2023-08-18T13:07:25ZNeelesh Thakurinclude null in query responseRelated Indexer MR and Issue: [197](https://community.opengroup.org/osdu/platform/system/indexer-service/-/merge_requests/197)Related Indexer MR and Issue: [197](https://community.opengroup.org/osdu/platform/system/indexer-service/-/merge_requests/197)M9 - Release 0.12https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/116Validation error on patch endpoint for Storage Service reveals stack trace info2023-08-18T13:07:26ZSpencer Suttonsuttonsp@amazon.comValidation error on patch endpoint for Storage Service reveals stack trace infoBelow image shows improper result:
![image](/uploads/717077f4381930ef43e18b1fc9b0c8ff/image.png)
This is because corresponding validator is missing a null check which I've added in this MRBelow image shows improper result:
![image](/uploads/717077f4381930ef43e18b1fc9b0c8ff/image.png)
This is because corresponding validator is missing a null check which I've added in this MRM9 - Release 0.12Spencer Suttonsuttonsp@amazon.comSpencer Suttonsuttonsp@amazon.comhttps://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/merge_requests/115Added a generic object named "additionalProperties" to be stored with status ...2023-08-18T13:07:28ZPramesh PatilAdded a generic object named "additionalProperties" to be stored with status info to store any related informationIssue - https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/issues/50Issue - https://community.opengroup.org/osdu/platform/system/lib/core/os-core-common/-/issues/50M9 - Release 0.12