Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
- Log in or register to create an issue
- Advanced search
Title | Status | Priority | Category | Version | Component | Replies | Last updated | Assigned to | Created |
---|---|---|---|---|---|---|---|---|---|
Can't uninstall | Closed (works as designed) | Normal | Bug report | 2.0.2 | Code | 5 | 2 days 19 hours | 2 weeks 4 days | |
After upgrading from 2.x to 3.x skipped config is null | Postponed (maintainer needs more info) | Normal | Bug report | 3.0.0 | Code | 4 | 2 weeks 1 day | 2 weeks 1 day | |
State should be cleaned on uninstall | Closed (fixed) | Normal | Bug report | 3.0.x-dev | Code | 15 | 4 weeks 21 hours | 1 month 4 weeks | |
name / passwords check not working as expected | Closed (fixed) | Normal | Bug report | 3.0.0-rc2 | Code | 7 | 1 month 2 weeks | 2 months 1 week | |
Warning: Undefined array key "result" in security_review_requirements() (line 51 of security_review.install) | Closed (fixed) | Normal | Bug report | 3.0.0-rc2 | Code | 7 | 1 month 2 weeks | 2 months 4 days | |
State should be cleaned on uninstall | Closed (fixed) | Normal | Bug report | 2.0.2 | Code | 5 | 1 month 2 weeks | 2 months 4 days | |
Message TypeError: array_key_exists(): Argument #2 ($array) must be of type array, null given in array_key_exists() | Closed (outdated) | Normal | Bug report | 3.0.x-dev | Code | 14 | 2 months 4 days | 3 months 1 week | |
security_review.checks.yml fails blt yaml validation | Closed (works as designed) | Major | Bug report | 3.0.x-dev | Code | 8 | 2 months 2 weeks | 2 months 2 weeks | |
Long field names which are shortened by Drupal doesn't work. | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 18 | 2 months 3 weeks | 3 years 7 months | |
Error: Call to a member function isAdmin() on null in Drupal\security_review\Security->rolePermissions() | Closed (fixed) | Normal | Bug report | 2.0.0 | Code | 9 | 3 months 1 week | 4 years 9 months | |
PrivateFiles check may fail or give misleading results for alternate stream wrappers | Needs work | Normal | Bug report | 3.0.x-dev | Code | 9 | 3 months 1 week | 7 months 1 week | |
PHP 8.1 Warning: Array to string conversion | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 10 | 3 months 2 weeks | 4 months 3 weeks | |
Executable PHP in files directory - false negative | Closed (outdated) | Normal | Bug report | 7.x-1.3 | Code | 21 | 4 months 1 week | 9 years 10 months | |
SQL syntax error in Field check when run on PostgreSQL | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 8 | 4 months 3 weeks | 7 months 1 week | |
PHP warning: in_array() expects parameter 2 to be array | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 16 | 7 months 6 days | 5 years 2 months | |
"VendorDirectory" help text issues | Closed (fixed) | Minor | Bug report | 2.0.x-dev | User interface | 7 | 7 months 6 days | 8 months 4 weeks | |
"Base table or view not found" when running report with CiviCRM on Drupal 9. | Closed (duplicate) | Normal | Bug report | 2.0.x-dev | Code | 4 | 7 months 1 week | 9 months 2 weeks | |
TypeError: Drupal\security_review\CheckResult::__construct(): Argument #6 ($hushedFindings) must be of type array, null given | Closed (outdated) | Normal | Bug report | 2.0.1 | Code | 7 | 7 months 1 week | 1 year 4 weeks | |
Table is empty, broken query | Closed (duplicate) | Normal | Bug report | 2.0.1 | Code | 4 | 7 months 2 weeks | 7 months 3 weeks | |
Unsafe file upload extensions Details page throws an exception | Closed (duplicate) | Critical | Bug report | 2.0.1 | Code | 3 | 7 months 2 weeks | 11 months 1 week | |
New Checks/NamePasswords does not scale with a large number of user accounts | Closed (fixed) | Normal | Bug report | 2.0.1 | Code | 16 | 11 months 4 weeks | 1 year 2 months | |
Drupal coding standard issues | PHPCS | Closed (won't fix) | Normal | Bug report | 2.0.x-dev | Code | 5 | 1 year 2 weeks | 1 year 2 weeks | |
Timeout cURL error 28 when running "Executable PHP" Test | Closed (outdated) | Normal | Bug report | 2.0.0 | Code | 5 | 1 year 3 weeks | 1 year 3 months | |
Error: Class "Symfony\Component\Filesystem\Filesystem" not found | Closed (fixed) | Normal | Bug report | 2.0.1 | Code | 11 | 1 year 4 weeks | 1 year 2 months | |
Schema issues | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 5 | 1 year 1 month | 1 year 1 month | |
Base table or view not found (table names incorrect for long table names) | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 8 | 1 year 1 month | 1 year 1 month | |
False Positive in multisite For all {subdomain}/file/* except current subdomain | Closed (outdated) | Normal | Bug report | 7.x-1.x-dev | Code | 9 | 1 year 1 month | 8 years 8 months | |
Only check default view access if it is used | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 18 | 1 year 2 months | 2 years 9 months | |
Refactor trusted hosts check | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 16 | 1 year 2 months | 5 years 5 months | |
Field check out of memory | Closed (fixed) | Normal | Bug report | 2.0.x-dev | Code | 15 | 1 year 2 months | 2 years 9 months | |
Default for public filesystem path not referring to current site | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Code | 7 | 1 year 2 months | alex-b | 7 years 6 months |
Excess space or tab symbols at .htaccess ("files" folder) provide false negative | Closed (fixed) | Normal | Bug report | 7.x-1.2 | Code | 11 | 1 year 2 months | 9 years 1 month | |
Display descriptions in drush results | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Code | 7 | 1 year 2 months | 7 years 11 months | |
The "last run" timestamp is not updated when running a review via drush | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Code | 8 | 1 year 2 months | 5 years 3 months | |
.json file extention recognized as .js | Closed (fixed) | Normal | Bug report | 7.x-1.3 | Code | 9 | 1 year 2 months | 8 years 1 month | |
Required parameter $check_name follows optional parameter | Closed (fixed) | Normal | Bug report | 7.x-1.3 | Code | 13 | 1 year 2 months | 1 year 8 months | |
Remove or update links to DrupalScout.com | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Documentation | 12 | 1 year 2 months | hey_germano | 3 years 11 months |
Every role is trusted | Closed (outdated) | Major | Bug report | 7.x-1.x-dev | Code | 5 | 1 year 3 months | 8 years 11 months | |
.ht.sqlite database folder -- false permissions warning | Closed (outdated) | Normal | Bug report | 7.x-1.1 | Code | 2 | 1 year 3 months | 9 years 9 months | |
PHP in Help text of a Content Type bypasses checks. | Closed (outdated) | Normal | Bug report | 7.x-1.x-dev | Code | 3 | 1 year 3 months | 7 years 1 month | |
Incorrect warnings about writeable files | Closed (outdated) | Major | Bug report | 7.x-1.2 | Code | 3 | 1 year 3 months | 8 years 5 months | |
Multisite: /sites/<othersite>/files are flagged as writeable | Closed (outdated) | Normal | Bug report | 7.x-1.3 | Code | 4 | 1 year 3 months | 5 years 9 months | |
Core update fails using Drush | Closed (outdated) | Normal | Bug report | 7.x-1.3 | Code | 2 | 1 year 3 months | 5 years 11 months | |
Executable PHP failure message is misleading | Closed (outdated) | Normal | Bug report | 7.x-1.2 | Code | 2 | 1 year 3 months | 8 years 8 months | |
HTTP Request Status Fails | Closed (outdated) | Normal | Bug report | 7.x-1.2 | Code | 2 | 1 year 3 months | 8 years 5 months | |
Failed SQL query causes http 500 status error | Closed (works as designed) | Major | Bug report | 7.x-1.3 | Code | 7 | 1 year 3 months | 6 years 8 months | |
Bad file permissions advice - causes 500 error | Closed (outdated) | Minor | Bug report | 7.x-1.3 | User interface | 2 | 1 year 3 months | 6 years 7 months | |
False positive for private files below docroot | Closed (outdated) | Normal | Bug report | 7.x-1.x-dev | Code | 2 | 1 year 3 months | 6 years 3 months | |
Web server file system permissions - Doesn't register permissions set on files. | Closed (works as designed) | Normal | Bug report | 7.x-1.3 | User interface | 4 | 1 year 3 months | 6 years 4 months | |
False positive when user and group owner are the same name | Closed (outdated) | Normal | Bug report | 7.x-1.x-dev | Code | 6 | 1 year 3 months | 8 years 6 months |