From 40e1df849387c918857b2926b814fc0d8de7fb9b Mon Sep 17 00:00:00 2001
From: PD-Team <8293321+bauthard@users.noreply.github.com>
Date: Fri, 29 Jan 2021 00:06:15 +0530
Subject: [PATCH] few fixes

---
 misconfiguration/springboot/springboot-heapdump.yaml | 2 +-
 workflows/springboot-workflow.yaml                   | 7 +++++--
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/misconfiguration/springboot/springboot-heapdump.yaml b/misconfiguration/springboot/springboot-heapdump.yaml
index 7b7c658e58..6e544e8135 100644
--- a/misconfiguration/springboot/springboot-heapdump.yaml
+++ b/misconfiguration/springboot/springboot-heapdump.yaml
@@ -28,7 +28,6 @@ requests:
           - "application/octet-stream"
           - "application/vnd.spring-boot.actuator"
           - "application/vnd.spring-boot.actuator.v1+json"
-          - "hprof"
         condition: or
         part: header
       - type: dsl
@@ -36,3 +35,4 @@ requests:
           - "len(body) >= 100000"
           - "content_length >= 100000"
         condition: or
+        part: header
diff --git a/workflows/springboot-workflow.yaml b/workflows/springboot-workflow.yaml
index cbe1780223..110835f2f1 100644
--- a/workflows/springboot-workflow.yaml
+++ b/workflows/springboot-workflow.yaml
@@ -10,6 +10,9 @@ info:
 
 workflows:
 
-  - template: technologies/detect-springboot-actuator.yaml
+  - template: misconfiguration/springboot-detect.yaml
     subtemplates:
-      - template: misconfiguration/springboot/
\ No newline at end of file
+      - template: cves/2018/CVE-2018-1271.yaml
+      - template: cves/2018/CVE-2018-1271.yaml
+      - template: cves/2020/CVE-2020-5410.yaml
+      - template: vulnerabilities/springboot/
\ No newline at end of file