https://github.com/contrast-security-oss/vulnerable-spring-boot-application

Last synced: 8 months ago
JSON representation

Host: GitHub
URL: https://github.com/contrast-security-oss/vulnerable-spring-boot-application
Owner: Contrast-Security-OSS
Created: 2018-06-01T01:09:41.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2025-07-23T01:31:50.000Z (11 months ago)
Last Synced: 2025-09-30T19:00:00.956Z (9 months ago)
Language: Java
Size: 2.29 MB
Stars: 14
Watchers: 24
Forks: 54
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Vulnerable Spring Boot Application

This application is an intentionally vulnerable Spring Boot application. The intent is to demonstrate the capabilities of Contrast Security's Maven plugin when used with continuous integration (such as TravisCI or CircleCI).

## Build

```
mvn install
```

## Run

```
java -jar target/provider-search-0.0.1-SNAPSHOT.jar
```

* Go to http://localhost:8080/
* Search for zip 21230

## Test

```
mvn clean test
```

## Running With Contrast

You will need an account with Contrast https://www.contrastsecurity.com

* Review the `run-with-contrast` profile settings in `pom.xml`

* Set the following environment variables

```
CONTRAST_MAVEN_USERNAME
CONTRAST_MAVEN_ORGUUID
CONTRAST_MAVEN_TEAMSERVERURL
CONTRAST_MAVEN_APIKEY
CONTRAST_MAVEN_SERVICEKEY
```

* `mvn install -P run-with-contrast`

## Details

The application runs using an in-memory H2 database. Schema and sample data should load on boot.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/contrast-security-oss/vulnerable-spring-boot-application

Awesome Lists containing this project

README