From e5a74cb29c3b2f7f78015e67ce80fe182199b418 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 3 Jan 2023 17:27:31 +0000
Subject: [PATCH] Swift: Add a reference for swift/hardcoded-key.

---
 .../src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/swift/ql/src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp b/swift/ql/src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp
index eb91742f7f9..7669f0ad360 100644
--- a/swift/ql/src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp
+++ b/swift/ql/src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp
@@ -14,4 +14,8 @@
     <p>The following example shows a few cases of instantiating a cipher with various encryption keys. In the 'BAD' cases, the key material is hardcoded, making the encrypted data vulnerable to recovery.  In the 'GOOD' cases, the key material is randomly generated and not hardcoded, which protects the encrypted data against recovery.</p>
     <sample src="HardcodedEncryptionKey.swift" />
   </example>
+
+  <references>
+    <li>OWASP: <a href="https://cheatsheetseries.owasp.org/cheatsheets/Key_Management_Cheat_Sheet.html">Key Management Cheat Sheet</a></li>
+  </references>
 </qhelp>