Versions Compared

Old Version 5

changes.mady.by.user Lakhwinder Singh Sarao

Saved on

compared with

New Version 6

changes.mady.by.user Yash Sancheti

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • What did you accomplish this past week?

    • Research work related to following topics : MVVM, Repository Architecture, Dependency Injection through Dagger 2, Unit Testing using jUnit, and Mockito.

    • Push final Registration Fragment MVVM migration code that implement following,

→ proper MVVM architecture with UserAuthRepository interface plus its implementation class.

→ Automatic Dependency Injection through Dagger 2

→ Proper Unit Testing of RegistrationViewModel and RegistrationRepository using jUnit and Mockito.

  • What will you do this upcoming week?

    • Will be migrating Login, Update Passcode, and Notification Features to MVVM with all

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

...

  • What did you accomplish this past week?

    • I was facing build errors while integrating CodeQL into the GitHub repository. So I set it up locally this week and tested the Fineract code using 400+ queries.

    • Detected potential vulnerabilities ranging from low to critical severity, as well as errors in the code and manually analyzed them.

    • Opened a pull request (PR) to fix a code error and a frontend issue.

    • Scanned openmf/community-app docker image using Trivy and analyzed the results.

    • Tested for parameter tampering on some requests.

  • What will you do this upcoming week?

    • I will work on fixing the potential vulnerabilities found this week and prepare draft PR's for the same and start testing for CSRF.

  • What obstacles are impeding your progress?

    • None

  • Would you like help from some mentor for this task? 

    • No

Kerlyn

  • What did you accomplish this past week?

    • Completed the test for sensitive data exposure where i reviewed the codebase.

    • Updated my notion documentation.

    • Began the test for unrestricted upload of files with dangerous types. Performed this test using Burp intruder.

      • Tested all extensions using intruder and used the grep feature to sort some results. Also made use of uncommon file extensions.

    • Did some research on how to use polygot files for such tests.

  • What will you do this upcoming week?

    • Continue the test for unrestricted upload of files with dangerous types.

    • Test for server-side request forgery

    • Begin Denial of Service Testing.

  • What obstacles are impeding your progress?

    • None

  • Would you like help from some mentor for this task? 

    • Not at the moment.

...