From f334cfbc1baf883984d494a5f79d212471b45f5a Mon Sep 17 00:00:00 2001 From: Riya Date: Wed, 3 May 2023 13:22:11 +0530 Subject: [PATCH 1/3] Modified the README.md file --- README.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index dc18313..11f4f0b 100644 --- a/README.md +++ b/README.md @@ -1,11 +1,13 @@ ## Amazon CodeGuru Reviewer JavaScript Detector Examples -Amazon CodeGuru Reviewer is an AWS service that uses program analysis and machine learning to detect potential defects that are difficult for developers to find and offers suggestions for improvement. +Amazon CodeGuru Reviewer is an AWS service that uses program analysis and machine learning to detect potential defects that are difficult for developers to find and offers suggestions for improvement. It is deliberately insecure tool maintained by [OWASP top 10 web application security risks](https://owasp.org/www-project-top-ten/) which is designed to teach application security lessons. This tool is a demonstration of common server-side application flaws. The exercises are intended to be used by people to learn about application security and penetration testing. When an issue is detected, a remediation recommendation and explanation is generated. This allows you to find and remediate issues before the code is deployed. CodeGuru Reviewer finds defects in Java, Python, and JavaScript code. For more information about how to set up and use CodeGuru Reviewer, see the [Amazon CodeGuru Reviewer User Guide](https://docs.aws.amazon.com/codeguru/latest/reviewer-ug/welcome.html). This repo demonstrates some of CodeGuru Reviewer's JavaScript detectors. For more descriptions of each detector, see our [Detector Library](https://docs.aws.amazon.com/codeguru/detector-library/index.html). You can also see the code example repos for [Java](https://github.com/aws-samples/amazon-codeguru-reviewer-java-detectors) and [Python](https://github.com/aws-samples/amazon-codeguru-reviewer-python-detectors). +The security detectors are features in CodeGuru Reviewer for Java, Python and JavaScript applications. These detectors identify security vulnerabilities in your code by using logic-based reasoning of code using techniques from automated reasoning, a sub-discipline of AI. + ## Try out the CodeGuru Reviewer GitHub Action on this repo You can use this code repository to try out CodeGuru Reviewer using your AWS credentials. From f813a229d91941c1a9b09f44d371503fbb91d7c5 Mon Sep 17 00:00:00 2001 From: Riya Date: Thu, 4 May 2023 09:35:57 +0530 Subject: [PATCH 2/3] Modified the README.md file --- README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 11f4f0b..f19abe1 100644 --- a/README.md +++ b/README.md @@ -1,12 +1,12 @@ ## Amazon CodeGuru Reviewer JavaScript Detector Examples -Amazon CodeGuru Reviewer is an AWS service that uses program analysis and machine learning to detect potential defects that are difficult for developers to find and offers suggestions for improvement. It is deliberately insecure tool maintained by [OWASP top 10 web application security risks](https://owasp.org/www-project-top-ten/) which is designed to teach application security lessons. This tool is a demonstration of common server-side application flaws. The exercises are intended to be used by people to learn about application security and penetration testing. When an issue is detected, a remediation recommendation and explanation is generated. This allows you to find and remediate issues before the code is deployed. +Amazon CodeGuru Reviewer is an AWS service that uses program analysis and machine learning to detect potential defects that are difficult for developers to find and offers suggestions for improvement. CodeGuru Reviewer finds defects in Java, Python, and JavaScript code. For more information about how to set up and use CodeGuru Reviewer, see the [Amazon CodeGuru Reviewer User Guide](https://docs.aws.amazon.com/codeguru/latest/reviewer-ug/welcome.html). This repo demonstrates some of CodeGuru Reviewer's JavaScript detectors. For more descriptions of each detector, see our [Detector Library](https://docs.aws.amazon.com/codeguru/detector-library/index.html). You can also see the code example repos for [Java](https://github.com/aws-samples/amazon-codeguru-reviewer-java-detectors) and [Python](https://github.com/aws-samples/amazon-codeguru-reviewer-python-detectors). -The security detectors are features in CodeGuru Reviewer for Java, Python and JavaScript applications. These detectors identify security vulnerabilities in your code by using logic-based reasoning of code using techniques from automated reasoning, a sub-discipline of AI. +PLEASE NOTE: This repo is for demonstration purpose only. It is meant to educate people about 'security flaws'. The code examples contain vulnerable code and should not be used for real-word purposes. ## Try out the CodeGuru Reviewer GitHub Action on this repo From 9014e23d73dce7c1feeda8d51f3c5200a6b8e87f Mon Sep 17 00:00:00 2001 From: Riya Date: Thu, 4 May 2023 09:39:36 +0530 Subject: [PATCH 3/3] Modified the README.md file --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index dc18313..c5315e3 100644 --- a/README.md +++ b/README.md @@ -6,6 +6,8 @@ CodeGuru Reviewer finds defects in Java, Python, and JavaScript code. For more i This repo demonstrates some of CodeGuru Reviewer's JavaScript detectors. For more descriptions of each detector, see our [Detector Library](https://docs.aws.amazon.com/codeguru/detector-library/index.html). You can also see the code example repos for [Java](https://github.com/aws-samples/amazon-codeguru-reviewer-java-detectors) and [Python](https://github.com/aws-samples/amazon-codeguru-reviewer-python-detectors). +PLEASE NOTE: This repo is for demonstration purpose only. It is meant to educate people about 'security flaws'. The code examples contain vulnerable code and should not be used for real-word purposes. + ## Try out the CodeGuru Reviewer GitHub Action on this repo You can use this code repository to try out CodeGuru Reviewer using your AWS credentials.