Skip to content

Release 2.52.0: Merge Bugfix into Dev #13601

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
rossops merged 18 commits into from
Nov 3, 2025

Changing to supported k8s version for minikube

88361c9
Select commit
Loading
Failed to load commit list.
Merged

Release 2.52.0: Merge Bugfix into Dev #13601

Changing to supported k8s version for minikube
88361c9
Select commit
Loading
Failed to load commit list.
DryRunSecurity / General Security Analyzer succeeded Nov 3, 2025 in 1m 44s

DryRun Security

Details

General Security Analyzer Findings: 1 detected

⚠️ Account Takeover via Social Auth Mapping Misconfiguration dojo/settings/settings.dist.py (click for details)
Type Account Takeover via Social Auth Mapping Misconfiguration
Description The DD_SOCIAL_AUTH_CREATE_USER_MAPPING setting allows an administrator to define which attribute from a social provider (e.g., 'username', 'email', 'fullname') should be used as the local username during user creation or linking. If this setting is configured to use a non-unique or unverified attribute like 'fullname', an attacker can create a social account with a 'fullname' matching a victim's existing local username. When the attacker attempts to log in via social authentication, the system will use the attacker's social 'fullname' as the username, potentially linking their social account to the victim's local account and leading to an account takeover.
Filename dojo/settings/settings.dist.py
CodeLink

django-DefectDojo/dojo/settings/settings.dist.py

Lines 113 to 119 in 88361c9

DD_FORGOT_USERNAME=(bool, True), # do we show link "I forgot my username" on login screen
DD_SOCIAL_AUTH_SHOW_LOGIN_FORM=(bool, True), # do we show user/pass input
DD_SOCIAL_AUTH_CREATE_USER=(bool, True), # if True creates user at first login
DD_SOCIAL_AUTH_CREATE_USER_MAPPING=(str, "username"), # could also be email or fullname
DD_SOCIAL_LOGIN_AUTO_REDIRECT=(bool, False), # auto-redirect if there is only one social login method
DD_SOCIAL_AUTH_TRAILING_SLASH=(bool, True),
DD_SOCIAL_AUTH_OIDC_AUTH_ENABLED=(bool, False),
View more details on DryRunSecurity