stackoom
  简体   繁体   中英

Application insight upgrade in .net

 原文  2020-05-16 17:17:29       javascript/ c#/ jquery/ asp.net-mvc/ azure-application-insights

Question

I have a web application developed in MVC. It's an existing application. While doing the SAST testing, we got some security issues under critical status like Insecure Randomness, CRSF (DOM), OPen indirect.

This issue is happening due to the javascript function ai.0.22.9-build00167.js. please someone can explain to me what is the use of this script. Also, I can find the new version after this.

Let clarify if I might update to the new version it will help me to fix the issue. If yes, please let to know how to update this version. Because I tried to update from Nuget from visual studio it's not helping me also I tried to download from other sites. but the file format is not supported.

If no, please someone can help me to resolve this.

The same issue I am facing in the below files also since its inbuild scripts I don't know how to handle.

jquery-1.10.2-vsdoc.js,
jquery.unobtrusive-ajax,
jquery.unobtrusive-ajax.min.js,
jquery.validate-vsdoc.js,
jquery.validate.js,
jquery.validate.min.js

Thanks

1 answers

solution1
 1  2020-05-18 10:28:36

ai.0.22.9-build00167.js is Microsoft Azure Application Insights JavaScript library.

Not sure why your MVC project is using App Insights JavaScript library, On top, this library is not updated since Aug. 2018 so surely there are latest/new library from Microsoft.

These are few points to help you decide:

1. Remove/Uninstall NuGet package

If your project is NOT not using any of the JavaScript framework (like Angular, ReactJS, VueJS, etc), you can remove/uninstall App Insights - JavaScript NuGet package.

This will also stop collecting your application health data in Azure App Insights.

2. For JavaScript Framework

If your project is using JavaScript framework (like Angular, Vue, etc) - you can install latest version of App Insights - Web library and configured accordingly.

It is NOT a NuGet package, instead it is NPM package.

3. For MVC Application

If there is a need to collect your MVC application health data in App Insights, you can install Application Insights SDK and configured accordingly.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Application Insight Cookies Handling in Jmeter Unable to add to custom telemetry initializer in Application Insight Application insight is not capturing the requests from Jmeter Can I funnel Application Insight browser telemetry through a custom domain? How to handle cookies on application upgrade? How do you add custom properties for ALL Azure Application Insight requests (JavaScript) Upgrade Classic ASP Javascript include to .net simple jQuery Chaining insight Upgrade angular application from 6 to 10 produces lots of errors after update Upgrade from angular 2 to 4 create the system slow in asp.net core
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM