mirror of
https://github.com/github/codeql.git
synced 2025-12-24 04:36:35 +01:00
Tag all security queries in supported languages' experimental directories with an experimental tag
This commit is contained in:
turbo
@@ -7,6 +7,7 @@
|
||||
* @precision high
|
||||
* @id cs/webclient-path-injection
|
||||
* @tags security
|
||||
* experimental
|
||||
* external/cwe/cwe-099
|
||||
* external/cwe/cwe-023
|
||||
* external/cwe/cwe-036
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @precision high
|
||||
* @id cs/request-forgery
|
||||
* @tags security
|
||||
* experimental
|
||||
* external/cwe/cwe-918
|
||||
*/
|
||||
|
||||
|
||||
@@ -9,6 +9,7 @@
|
||||
* @precision high
|
||||
* @id cs/web/cookie-httponly-not-set
|
||||
* @tags security
|
||||
* experimental
|
||||
* external/cwe/cwe-1004
|
||||
*/
|
||||
|
||||
|
||||
@@ -4,6 +4,7 @@
|
||||
* @kind problem
|
||||
* @tags security
|
||||
* cryptography
|
||||
* experimental
|
||||
* external/cwe/cwe-327
|
||||
* @id cs/azure-storage/unsafe-usage-of-client-side-encryption-version
|
||||
* @problem.severity error
|
||||
|
||||
@@ -8,6 +8,7 @@
|
||||
* @precision high
|
||||
* @id cs/web/cookie-secure-not-set
|
||||
* @tags security
|
||||
* experimental
|
||||
* external/cwe/cwe-319
|
||||
* external/cwe/cwe-614
|
||||
*/
|
||||
|
||||
@@ -5,6 +5,7 @@
|
||||
* @problem.severity error
|
||||
* @id cs/hash-without-salt
|
||||
* @tags security
|
||||
* experimental
|
||||
* external/cwe-759
|
||||
*/
|
||||
|
||||
|
||||
@@ -4,6 +4,7 @@
|
||||
* Higher precision version checks for exception throws, so less false positives are expected.
|
||||
* @kind problem
|
||||
* @tags security
|
||||
* experimental
|
||||
* JsonWebTokenHandler
|
||||
* manual-verification-required
|
||||
* @id cs/json-webtoken-handler/delegated-security-validations-always-return-true
|
||||
|
||||
@@ -3,6 +3,7 @@
|
||||
* @description Check if security sensitive token validations for `JsonWebTokenHandler` are being disabled.
|
||||
* @kind problem
|
||||
* @tags security
|
||||
* experimental
|
||||
* JsonWebTokenHandler
|
||||
* manual-verification-required
|
||||
* @id cs/json-webtoken-handler/security-validations-disabled
|
||||
|
||||
@@ -5,6 +5,7 @@
|
||||
* @problem.severity warning
|
||||
* @id cs/dataset-serialization/defining-dataset-related-type
|
||||
* @tags security
|
||||
* experimental
|
||||
*/
|
||||
|
||||
import csharp
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @precision medium
|
||||
* @id cs/dataset-serialization/defining-potentially-unsafe-xml-serializer
|
||||
* @tags security
|
||||
* experimental
|
||||
*/
|
||||
|
||||
import csharp
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @precision medium
|
||||
* @id cs/dataset-serialization/unsafe-type-used-data-contract-serializer
|
||||
* @tags security
|
||||
* experimental
|
||||
*/
|
||||
|
||||
import csharp
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @precision medium
|
||||
* @id cs/dataset-serialization/xml-deserialization-with-dataset
|
||||
* @tags security
|
||||
* experimental
|
||||
*/
|
||||
|
||||
import csharp
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @precision low
|
||||
* @id cs/backdoor/dangerous-native-functions
|
||||
* @tags security
|
||||
* experimental
|
||||
* solorigate
|
||||
*/
|
||||
|
||||
|
||||
@@ -6,6 +6,7 @@
|
||||
* @problem.severity warning
|
||||
* @id cs/backdoor/potential-time-bomb
|
||||
* @tags security
|
||||
* experimental
|
||||
* solorigate
|
||||
*/
|
||||
|
||||
|
||||
@@ -3,6 +3,7 @@
|
||||
* @description Flow from a function retrieving process name to a hash function.
|
||||
* @kind path-problem
|
||||
* @tags security
|
||||
* experimental
|
||||
* solorigate
|
||||
* @problem.severity warning
|
||||
* @precision medium
|
||||
|
||||
Reference in New Issue
Block a user