Feb 10, 2023 · I want to find the best way to address false positives in the Checkmarx report. One of the points I am investigating is how to make the Checkmarx report to display the false positive comment …

May 28, 2024 · While performing a Checkmarx scan on our Salesforce Apex codebase, an issue was reported under the category "DML Statements Inside Loops." Provided lot of lines of code as shown …

Mar 16, 2021 · Checkmarx is correctly warning you that this is a dangerous operation since someone could craft the content of the SVG element to include some form of hack. What you need to do is …

As such this is a Checkmarx false positive and must be addressed by explaining the scenario in your submission documentation. This answer covers how you can also best to comment the relevant code …

Dec 27, 2023 · We have received checkmarx report from client where there are 10-12 issues are related to lightning DOM XSS attack. In majority cases, issues are related to attributes are assigned using …

Sep 11, 2024 · Therefore, when dynamic objects are used, CheckMarx cannot confirm that proper security checks are applied. I actually facing this FLS update violations for several objects in my …

Nov 11, 2020 · Checkmarx cannot detect CRUD/FLS enforcement that is done earlier in a code flow but via a separate method call (hence our 1000s of false positives) but it does handle tests at higher …

Sep 10, 2024 · I am looking for ways to bypass Stored/Reflected XSS issues that are showing up as part of CheckMarx Scan report for the arguments passed to js functions in a VF Page, given that queries …

May 28, 2015 · Can someone please advise how Checkmarx/ Force.com Security Source Scanner will be performing code review Is code review happening within Salesforce servers or code get ported to …

Aug 22, 2025 · Start asking to get answers Find the answer to your question by asking. Ask question checkmarx verification