Merge branch 'main' of https://github.com/github/codeql into python-a-few-minor-cleanups

python/ql/src/Security/CVE-2018-1281/BindToAllInterfaces.ql

@@ -6,7 +6,7 @@
  * @tags security
  *       external/cwe/cwe-200
  * @problem.severity error
- * @security-severity 3.6
+ * @security-severity 6.5
  * @sub-severity low
  * @precision high
  * @id py/bind-socket-all-network-interfaces

python/ql/src/Security/CWE-020-ExternalAPIs/UntrustedDataToExternalAPI.ql

@@ -5,7 +5,7 @@
  * @kind path-problem
  * @precision low
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 7.8
  * @tags security external/cwe/cwe-20
  */
 

python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql

@@ -3,7 +3,7 @@
  * @description Matching a URL or hostname against a regular expression that contains an unescaped dot as part of the hostname might match more hostnames than expected.
  * @kind problem
  * @problem.severity warning
- * @security-severity 5.9
+ * @security-severity 7.8
  * @precision high
  * @id py/incomplete-hostname-regexp
  * @tags correctness

python/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.ql

@@ -3,7 +3,7 @@
  * @description Security checks on the substrings of an unparsed URL are often vulnerable to bypassing.
  * @kind problem
  * @problem.severity warning
- * @security-severity 5.9
+ * @security-severity 7.8
  * @precision high
  * @id py/incomplete-url-substring-sanitization
  * @tags correctness

python/ql/src/Security/CWE-022/PathInjection.ql

@@ -3,7 +3,7 @@
  * @description Accessing paths influenced by users can allow an attacker to access unexpected resources.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 6.4
+ * @security-severity 7.5
  * @sub-severity high
  * @precision high
  * @id py/path-injection

python/ql/src/Security/CWE-022/TarSlip.ql

@@ -6,7 +6,7 @@
  * @kind path-problem
  * @id py/tarslip
  * @problem.severity error
- * @security-severity 6.4
+ * @security-severity 7.5
  * @precision medium
  * @tags security
  *       external/cwe/cwe-022

python/ql/src/Security/CWE-078/CommandInjection.ql

@@ -4,7 +4,7 @@
  *              user to change the meaning of the command.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 9.8
  * @sub-severity high
  * @precision high
  * @id py/command-line-injection

python/ql/src/Security/CWE-079/Jinja2WithoutEscaping.ql

@@ -4,7 +4,7 @@
  *              cause a cross-site scripting vulnerability.
  * @kind problem
  * @problem.severity error
- * @security-severity 2.9
+ * @security-severity 6.1
  * @precision medium
  * @id py/jinja2/autoescape-false
  * @tags security

python/ql/src/Security/CWE-079/ReflectedXss.ql

@@ -4,7 +4,7 @@
  *              allows for a cross-site scripting vulnerability.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 2.9
+ * @security-severity 6.1
  * @sub-severity high
  * @precision high
  * @id py/reflective-xss

python/ql/src/Security/CWE-089/SqlInjection.ql

@@ -4,7 +4,7 @@
  *              malicious SQL code by the user.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 6.4
+ * @security-severity 8.8
  * @precision high
  * @id py/sql-injection
  * @tags security

python/ql/src/Security/CWE-094/CodeInjection.ql

@@ -4,7 +4,7 @@
  *              code execution.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 10.0
+ * @security-severity 9.3
  * @sub-severity high
  * @precision high
  * @id py/code-injection

python/ql/src/Security/CWE-209/StackTraceExposure.ql

@@ -5,7 +5,7 @@
  *              developing a subsequent exploit.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 3.6
+ * @security-severity 5.4
  * @precision high
  * @id py/stack-trace-exposure
  * @tags security

python/ql/src/Security/CWE-215/FlaskDebug.ql

@@ -3,7 +3,7 @@
  * @description Running a Flask app in debug mode may allow an attacker to run arbitrary code through the Werkzeug debugger.
  * @kind problem
  * @problem.severity error
- * @security-severity 6.4
+ * @security-severity 7.5
  * @precision high
  * @id py/flask-debug
  * @tags security

python/ql/src/Security/CWE-295/MissingHostKeyValidation.ql

@@ -3,7 +3,7 @@
  * @description Accepting unknown host keys can allow man-in-the-middle attacks.
  * @kind problem
  * @problem.severity error
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision high
  * @id py/paramiko-missing-host-key-validation
  * @tags security

python/ql/src/Security/CWE-295/RequestWithoutValidation.ql

@@ -3,7 +3,7 @@
  * @description Making a request without certificate validation can allow man-in-the-middle attacks.
  * @kind problem
  * @problem.severity error
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision medium
  * @id py/request-without-cert-validation
  * @tags security

python/ql/src/Security/CWE-312/CleartextLogging.ql

@@ -4,7 +4,7 @@
  *              expose it to an attacker.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 7.5
  * @precision high
  * @id py/clear-text-logging-sensitive-data
  * @tags security

python/ql/src/Security/CWE-312/CleartextStorage.ql

@@ -4,7 +4,7 @@
  *              attacker.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 7.5
  * @precision high
  * @id py/clear-text-storage-sensitive-data
  * @tags security

python/ql/src/Security/CWE-326/WeakCryptoKey.ql

@@ -3,7 +3,7 @@
  * @description Use of a cryptographic key that is too small may allow the encryption to be broken.
  * @kind problem
  * @problem.severity error
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision high
  * @id py/weak-crypto-key
  * @tags security

python/ql/src/Security/CWE-327/BrokenCryptoAlgorithm.ql

@@ -3,7 +3,7 @@
  * @description Using broken or weak cryptographic algorithms can compromise security.
  * @kind problem
  * @problem.severity warning
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision high
  * @id py/weak-cryptographic-algorithm
  * @tags security

python/ql/src/Security/CWE-327/InsecureDefaultProtocol.ql

@@ -5,7 +5,7 @@
  * @id py/insecure-default-protocol
  * @kind problem
  * @problem.severity warning
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision high
  * @tags security
  *       external/cwe/cwe-327

python/ql/src/Security/CWE-327/InsecureProtocol.ql

@@ -4,7 +4,7 @@
  * @id py/insecure-protocol
  * @kind problem
  * @problem.severity warning
- * @security-severity 5.2
+ * @security-severity 7.5
  * @precision high
  * @tags security
  *       external/cwe/cwe-327

python/ql/src/Security/CWE-327/WeakSensitiveDataHashing.ql

@@ -3,7 +3,7 @@
  * @description Using broken or weak cryptographic hashing algorithms can compromise security.
  * @kind path-problem
  * @problem.severity warning
- * @security-severity 5.9
+ * @security-severity 7.5
  * @precision high
  * @id py/weak-sensitive-data-hashing
  * @tags security

python/ql/src/Security/CWE-377/InsecureTemporaryFile.ql

@@ -4,7 +4,7 @@
  * @kind problem
  * @id py/insecure-temporary-file
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 7.0
  * @sub-severity high
  * @precision high
  * @tags external/cwe/cwe-377

python/ql/src/Security/CWE-502/UnsafeDeserialization.ql

@@ -4,7 +4,7 @@
  * @kind path-problem
  * @id py/unsafe-deserialization
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 9.8
  * @sub-severity high
  * @precision high
  * @tags external/cwe/cwe-502

python/ql/src/Security/CWE-601/UrlRedirect.ql

@@ -4,7 +4,7 @@
  *              may cause redirection to malicious web sites.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 2.7
+ * @security-severity 6.1
  * @sub-severity low
  * @id py/url-redirection
  * @tags security

python/ql/src/Security/CWE-732/WeakFilePermissions.ql

@@ -4,7 +4,7 @@
  * @kind problem
  * @id py/overly-permissive-file
  * @problem.severity warning
- * @security-severity 5.9
+ * @security-severity 7.8
  * @sub-severity high
  * @precision medium
  * @tags external/cwe/cwe-732

python/ql/src/Security/CWE-798/HardcodedCredentials.ql

@@ -3,7 +3,7 @@
  * @description Credentials are hard coded in the source code of the application.
  * @kind path-problem
  * @problem.severity error
- * @security-severity 5.9
+ * @security-severity 9.8
  * @precision medium
  * @id py/hardcoded-credentials
  * @tags security