June 2 2023 Weekly Check-In

Owned by Ed Cable
Last updated: Jun 23, 2023
4 min read

Date

Jun 2, 2023

Attendees

Discuss progress of projects and identify any blockers

Recording

https://us02web.zoom.us/rec/share/je8VbH6sfCmg7oUeY8NAODocXNEp_D3BCVf6dHsNH_hD96unZplAwqKQaHhhrXY.M20p7rw2495RV1DH?pwd=smnetjm2KVVGk0HorTnuHgQaxYa1_Km9

Meeting Link: https://us02web.zoom.us/j/84000026273



Discussion items

Time







Time







45 minutes

updates & blockers





Introductions

Check-Ins

For each student please create a new Level 2 entry and enter the following. 

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Google Summer of Code

Radha Thakare

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Pushpendra Kumar

  • What did you accomplish this past week?

    • I completed 3 issues(#1752,#1754,#1755) which were assigned to me on web app.

    • I started working on making the changes to the loan product service from custom service to generated service by OpenAPI.

  • What will you do this upcoming week?

    • I will work on other products' services and change them from custom service to generated service.

  • What obstacles are impeding your progress?

    • None as of now.

  • Would you like help from some mentor for this task? 

    • Yes, I want to make sure the changes which I am doing are correct way or not.

Pratyush Singh

  • What did you accomplish this past week?

    • Worked on migrating Mifos-Mobile from Butterknife to Viewbinding(focused on fragments, and adapters), almost done with the migration.

    • Reviewed existing issues at Mifos-Mobile

    • Planned upcoming work/features with the mentor.

  • What will you do this upcoming week?

    • Will finish Viewbinding migration

    • Will get started with new implementation work.

    • Will be making mock data to test the APIs.

  • What obstacles are impeding your progress?

    • None, as of now

  • Would you like help from some mentor for this task? 

    • Not right now.

Abhishek Gururani

  • What did you accomplish this past week?

    • We started with migrating the project from Butterknife to Viewbinding during the beginning of Community Bonding Period. And this past week got done with 95% of the migration. Here’s a spreadsheet that documents the migration process(co authored by me and fellow contributor at Mifos Mobile) → link

    • Reviewed old and new PRs(from 2017 till 2023), and made the following google spreadsheet to document them → link

    • Did a meet with the mentor to plan further work and action.

  • What will you do this upcoming week?

    • Will get done with migration of the Mifos-Mobile app from butterknife to Viewbinding

    • Will pick up new issues

    • Will get stated with new implementation work after thorough discussing with the mentor.

  • What obstacles are impeding your progress?

    • none, as of now.

  • Would you like help from some mentor for this task? 

    • no, everything is good right now.

Meghna Bajoria

  • What did you accomplish this past week?

    • Successfully set up Fineract service in my local system

    • Identified and resolved outdated dependencies in Mifos-chatbot code and ran it successfully in my local system.

    • Went through the code base to understand the working.

  • What will you do this upcoming week?

    • Even though both the services are up in my system, there are several issues related to spring security and slack configuration with Mifos-chatbot because of which progress has stopped. As a result, I will focus on the rasa chatbot alone and will work towards running only the conversation part in my local system.

  • What obstacles are impeding your progress?

    • Even after logging into mifos-chatbot application, we get an error page so we are not sure why.

    • Chatbot app from Slack applications requires authorization. As improving the conversation ability of the chatbot is the main goal, we are focusing on running only the conversation part in the local. The setup might take some time.

  • Would you like help from some mentor for this task?

    • Not at the moment

Yash Sancheti

  • What did you accomplish this past week?

    • I set up Burp and other tools, configured them with my browser. I explored the application’s features and started crawling.

    • I read the code and understood its flow. User manuals and security blogs helped me learn more.

    • I created a workspace in Notion to organize, document my work and keep track of security resources.

    • To save time and work more efficiently, I set up a remote desktop server to automate tasks.

    • I read API documentation, security blogs, and read disclosed reports of XSS and IDOR attacks. Used web archive to extract all end points and analyzed them.

  • What will you do this upcoming week?

    • I will start security research from next week, my focus will be on testing every feature and request. I will also find out some issues to work on. I will have a meeting with my mentor on Tuesday.

  • What obstacles are impeding your progress?

    • none

  • Would you like help from some mentor for this task? 

    • nope

Kerlyn

  • What did you accomplish this past week?

    • Refine project proposal

    • Setup my test environment: Setup the Mifos X application on my local, and set up the fineract backend (I can now access the swagger documentation as well on my local)

    • Read Fineract swagger API documentation and test APIs.

    • Phase 1:

      • Perform DAST Scan using Wapiti and Owasp Zap.

      • Analyze reports generated by vulnerability scanners (Wapiti and Owasp Zap).

      • Research on how to configure vulnerability scanning on Postman.

  • What will you do this upcoming week?

    • Meet with my Mentor to talk about how the project will be managed.

    • Read write-ups by other researchers.

    • Phase 2:

      • Begin Project Implementation by testing for :

        • Identification and authentication failures

        • Broken Access Control

  • What obstacles are impeding your progress?

    • None for now.

  • Would you like help from some mentor for this task? 

    • Not at the moment.

Elijah Okello

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Abhinav Sinha

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Rachit Gupta

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Mifos Summer of Code

Deepthi

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Arshad Patel

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Aditya Gupta

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Lakhwinder Singh Sarao

  • What did you accomplish this past week?

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

  • Would you like help from some mentor for this task? 

Other Discussion