...
What did you accomplish this past week?
Research work related to following topics : MVVM, Repository Architecture, Dependency Injection through Dagger 2, Unit Testing using jUnit, and Mockito.
Push final Registration Fragment MVVM migration code that implement following,
→ proper MVVM architecture with UserAuthRepository interface plus its implementation class.
→ Automatic Dependency Injection through Dagger 2
→ Proper Unit Testing of RegistrationViewModel and RegistrationRepository using jUnit and Mockito.
What will you do this upcoming week?
Will be migrating Login, Update Passcode, and Notification Features to MVVM with all
What obstacles are impeding your progress?
Would you like help from some mentor for this task?
...
What did you accomplish this past week?
I was facing build errors while integrating CodeQL into the GitHub repository. So I set it up locally this week and tested the Fineract code using 400+ queries.
Detected potential vulnerabilities ranging from low to critical severity, as well as errors in the code and manually analyzed them.
Opened a pull request (PR) to fix a code error and a frontend issue.
Scanned openmf/community-app docker image using Trivy and analyzed the results.
Tested for parameter tampering on some requests.
What will you do this upcoming week?
I will work on fixing the potential vulnerabilities found this week and prepare draft PR's for the same and start testing for CSRF.
What obstacles are impeding your progress?
None
Would you like help from some mentor for this task?
No
Kerlyn
What did you accomplish this past week?
Completed the test for sensitive data exposure where i reviewed the codebase.
Updated my notion documentation.
Began the test for unrestricted upload of files with dangerous types. Performed this test using Burp intruder.
Tested all extensions using intruder and used the grep feature to sort some results. Also made use of uncommon file extensions.
Did some research on how to use polygot files for such tests.
What will you do this upcoming week?
Continue the test for unrestricted upload of files with dangerous types.
Test for server-side request forgery
Begin Denial of Service Testing.
What obstacles are impeding your progress?
None
Would you like help from some mentor for this task?
Not at the moment.
...