Comments (3)
@0xedward Thank you! Running Pyre in the breakableflask repo did the trick, so I think there really weren't any issues the first time I did it, my mistake
from sapp.
Hi Ed - super excited to be working with you and looking forward to helping out with SAPP any way that I can!
I tried out the steps to reproduce the error yesterday, and I'm having some trouble with Step 5, since the SAPP dashboard comes up empty so that I can't select filter options (see screenshot below)
I checked the Common Issues page and noted that the cat taint-output.json | grep "issue"
command returned nothing, although the file itself isn't empty and I think some issues were reported when I ran the pyre analyze
command. I don't think I had any other problems running the steps, so I'm just wondering if I'm missing something here? Is there perhaps a test repo where I can run the pyre analyze
command to ensure issues are reported?
Also, feel free to jump in @m0mosenpai if you have any insight on this :)
from sapp.
Hey @gracewgao, thanks for providing a detailed description of what you've tried so far!
The filter fields in SAPP's web UI fetch the data from the run you have selected to prepopulate a list of options per filter field. From the screenshot, it seems like Run 6
doesn't contain any issues, which is likely why there are no options to pick from for the Codes
field.
I checked the Common Issues page and noted that the cat taint-output.json | grep "issue" command returned nothing, although the file itself isn't empty and I think some issues were reported when I ran the pyre analyze command
Ah, your guess at what might be going wrong is in the right direction here! If cat taint-output.json | grep "issue"
is returning nothing, SAPP is likely not ingesting any issues, which would result in a Run
being empty and no options fetched to prepopulate filter fields. Though this is strange, since you mentioned there were some issues outputted from pyre analyze
. Would you be able to provide the taint-output.json
file you are using so I can look into this?
Is there perhaps a test repo where I can run the pyre analyze command to ensure issues are reported?
In the meantime, here's some repos I've used for testing while working on SAPP:
- https://github.com/facebook/pyre-check/tree/master/documentation/deliberately_vulnerable_flask_app
- For
deliberately_vulnerable_flask_app
, make sure you runsetup.sh
before runningpyre init && pyre analyze
- For
- https://github.com/stephenbradshaw/breakableflask/
Sorry about the setup process being a bit confusing!
from sapp.
Related Issues (15)
- Filter has bugs
- Can the sapp support to bind 0.0.0.0 other than localhost ? HOT 3
- Cannot read properties of undefined (reading 'slice') HOT 6
- Feature: --database-name should take a URL HOT 2
- AttributeError: 'LocalStack' object has no attribute '__ident_func__' HOT 3
- AttributeError: module 'zstd' has no attribute 'ZstdCompressor'
- Failed to parse the result of Mariana-trench HOT 1
- KeyError: 'caller_port' HOT 2
- KeyError: 'port' HOT 5
- sapp.pipeline.ParseError: Unexpected trace fragment HOT 4
- KeyError: 'port' when following mariana-trench guide HOT 7
- Error installing `fb-sapp` due to dependency issue HOT 2
- what can i do to apply a list of filters and get a merge results in web interface?? HOT 1
- Web UI lags HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sapp.