Tag all security queries in supported languages' experimental directories with an experimental tag

2026-04-29 18:55:14 +02:00 · 2022-12-14 17:15:50 +01:00
parent a92acf5218
commit 4ec401a3f6
148 changed files with 155 additions and 3 deletions
--- a/java/ql/src/experimental/Security/CWE/CWE-016/InsecureSpringActuatorConfig.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-016/InsecureSpringActuatorConfig.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/insecure-spring-actuator-config
 * @tags security
+ *       experimental
 *       external/cwe/cwe-016
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-016/SpringBootActuators.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-016/SpringBootActuators.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/spring-boot-exposed-actuators
 * @tags security
+ *       experimental
 *       external/cwe/cwe-16
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/log4j-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-020
 *       external/cwe/cwe-074
 *       external/cwe/cwe-400
--- a/java/ql/src/experimental/Security/CWE/CWE-036/OpenStream.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-036/OpenStream.ql
@@ -7,6 +7,7 @@
 * @precision medium
 * @id java/openstream-called-on-tainted-url
 * @tags security
+ *       experimental
 *       external/cwe/cwe-036
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/file-path-injection
 * @tags security
+ *       experimental
 *       external/cwe-073
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/command-line-injection-experimental
 * @tags security
+ *       experimental
 *       external/cwe/cwe-078
 *       external/cwe/cwe-088
 */
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisAnnotationSqlInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisAnnotationSqlInjection.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/mybatis-annotation-sql-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-089
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisMapperXmlSqlInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisMapperXmlSqlInjection.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/mybatis-xml-sql-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-089
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/BeanShellInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/BeanShellInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/beanshell-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/InsecureDexLoading.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/InsecureDexLoading.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/android-insecure-dex-loading
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/JShellInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/JShellInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/jshell-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/JakartaExpressionInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/JakartaExpressionInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/javaee-expression-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/JythonInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/JythonInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/jython-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 *       external/cwe/cwe-095
 */
--- a/java/ql/src/experimental/Security/CWE/CWE-094/ScriptInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/ScriptInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/unsafe-eval
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/SpringImplicitViewManipulation.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/SpringImplicitViewManipulation.ql
@@ -6,6 +6,7 @@
 * @precision high
 * @id java/spring-view-manipulation-implicit
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-094/SpringViewManipulation.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/SpringViewManipulation.ql
@@ -6,6 +6,7 @@
 * @precision high
 * @id java/spring-view-manipulation
 * @tags security
+ *       experimental
 *       external/cwe/cwe-094
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-1004/InsecureTomcatConfig.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-1004/InsecureTomcatConfig.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/tomcat-disabled-httponly
 * @tags security
+ *       experimental
 *       external/cwe/cwe-1004
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-1004/SensitiveCookieNotHttpOnly.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-1004/SensitiveCookieNotHttpOnly.ql
@@ -7,6 +7,7 @@
 * @precision medium
 * @id java/sensitive-cookie-not-httponly
 * @tags security
+ *       experimental
 *       external/cwe/cwe-1004
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-200/InsecureWebResourceResponse.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-200/InsecureWebResourceResponse.ql
@@ -6,6 +6,7 @@
 * @id java/insecure-webview-resource-response
 * @problem.severity error
 * @tags security
+ *       experimental
 *       external/cwe/cwe-200
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-200/SensitiveAndroidFileLeak.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-200/SensitiveAndroidFileLeak.ql
@@ -6,6 +6,7 @@
 * @id java/sensitive-android-file-leak
 * @problem.severity warning
 * @tags security
+ *       experimental
 *       external/cwe/cwe-200
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-208/PossibleTimingAttackAgainstSignature.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-208/PossibleTimingAttackAgainstSignature.ql
@@ -9,6 +9,7 @@
 * @precision medium
 * @id java/possible-timing-attack-against-signature
 * @tags security
+ *       experimental
 *       external/cwe/cwe-208
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstHeader.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstHeader.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/timing-attack-against-headers-value
 * @tags security
+ *       experimental
 *       external/cwe/cwe-208
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstSignature.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstSignature.ql
@@ -10,6 +10,7 @@
 * @precision high
 * @id java/timing-attack-against-signature
 * @tags security
+ *       experimental
 *       external/cwe/cwe-208
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-295/JxBrowserWithoutCertValidation.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-295/JxBrowserWithoutCertValidation.ql
@@ -8,6 +8,7 @@
 * @precision medium
 * @id java/jxbrowser/disabled-certificate-validation
 * @tags security
+ *       experimental
 *       external/cwe/cwe-295
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-297/IgnoredHostnameVerification.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-297/IgnoredHostnameVerification.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/ignored-hostname-verification
 * @tags security
+ *       experimental
 *       external/cwe/cwe-297
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-297/InsecureLdapEndpoint.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-297/InsecureLdapEndpoint.ql
@@ -8,6 +8,7 @@
 * @precision medium
 * @id java/insecure-ldaps-endpoint
 * @tags security
+ *       experimental
 *       external/cwe/cwe-297
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/disabled-certificate-revocation-checking
 * @tags security
+ *       experimental
 *       external/cwe/cwe-299
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.ql
@@ -5,6 +5,7 @@
 * @problem.severity error
 * @id java/hardcoded-jwt-key
 * @tags security
+ *       experimental
 *       external/cwe/cwe-321
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-327/UnsafeTlsVersion.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-327/UnsafeTlsVersion.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/unsafe-tls-version
 * @tags security
+ *       experimental
 *       external/cwe/cwe-327
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-346/UnvalidatedCors.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-346/UnvalidatedCors.ql
@@ -6,6 +6,7 @@
 * @precision high
 * @id java/unvalidated-cors-origin-set
 * @tags security
+ *       experimental
 *       external/cwe/cwe-346
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/ip-address-spoofing
 * @tags security
+ *       experimental
 *       external/cwe/cwe-348
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-352/JsonpInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-352/JsonpInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/jsonp-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-352
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.ql
@@ -6,6 +6,7 @@
 * @id java/thread-resource-abuse
 * @problem.severity warning
 * @tags security
+ *       experimental
 *       external/cwe/cwe-400
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-470/UnsafeReflection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-470/UnsafeReflection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/unsafe-reflection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-470
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-489/EJBMain.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-489/EJBMain.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/main-method-in-enterprise-bean
 * @tags security
+ *       experimental
 *       external/cwe/cwe-489
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-489/WebComponentMain.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-489/WebComponentMain.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/main-method-in-web-components
 * @tags security
+ *       experimental
 *       external/cwe/cwe-489
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-489/devMode.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-489/devMode.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/struts-development-mode
 * @tags security
+ *       experimental
 *       external/cwe/cwe-489
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeDeserializationRmi.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeDeserializationRmi.ql
@@ -9,6 +9,7 @@
 * @precision high
 * @id java/unsafe-deserialization-rmi
 * @tags security
+ *       experimental
 *       external/cwe/cwe-502
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInConfigurationClass.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInConfigurationClass.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/unsafe-deserialization-spring-exporter-in-configuration-class
 * @tags security
+ *       experimental
 *       external/cwe/cwe-502
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInXMLConfiguration.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInXMLConfiguration.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/unsafe-deserialization-spring-exporter-in-xml-configuration
 * @tags security
+ *       experimental
 *       external/cwe/cwe-502
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-522/InsecureLdapAuth.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-522/InsecureLdapAuth.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/insecure-ldap-auth
 * @tags security
+ *       experimental
 *       external/cwe/cwe-522
 *       external/cwe/cwe-319
 */
--- a/java/ql/src/experimental/Security/CWE/CWE-548/InsecureDirectoryConfig.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-548/InsecureDirectoryConfig.ql
@@ -9,6 +9,7 @@
 * @precision medium
 * @id java/server-directory-listing
 * @tags security
+ *       experimental
 *       external/cwe/cwe-548
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/unsafe-url-forward-dispatch-load
 * @tags security
+ *       experimental
 *       external/cwe-552
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-555/CredentialsInPropertiesFile.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-555/CredentialsInPropertiesFile.ql
@@ -6,6 +6,7 @@
 * @precision high
 * @id java/credentials-in-properties
 * @tags security
+ *       experimental
 *       external/cwe/cwe-555
 *       external/cwe/cwe-256
 *       external/cwe/cwe-260
--- a/java/ql/src/experimental/Security/CWE/CWE-555/PasswordInConfigurationFile.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-555/PasswordInConfigurationFile.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/password-in-configuration
 * @tags security
+ *       experimental
 *       external/cwe/cwe-555
 *       external/cwe/cwe-256
 *       external/cwe/cwe-260
--- a/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql
@@ -6,6 +6,7 @@
 * @precision medium
 * @id java/sensitive-query-with-get
 * @tags security
+ *       experimental
 *       external/cwe/cwe-598
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-600/UncaughtServletException.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-600/UncaughtServletException.ql
@@ -9,6 +9,7 @@
 * @precision medium
 * @id java/uncaught-servlet-exception
 * @tags security
+ *       experimental
 *       external/cwe/cwe-600
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-601/SpringUrlRedirect.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-601/SpringUrlRedirect.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/spring-unvalidated-url-redirection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-601
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-611/XXE.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-611/XXE.ql
@@ -8,6 +8,7 @@
 * @precision high
 * @id java/xxe-with-experimental-sinks
 * @tags security
+ *       experimental
 *       external/cwe/cwe-611
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-611/XXELocal.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-611/XXELocal.ql
@@ -10,6 +10,7 @@
 * @precision medium
 * @id java/xxe-local-experimental-sinks
 * @tags security
+ *       experimental
 *       external/cwe/cwe-611
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegex.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegex.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/permissive-dot-regex
 * @tags security
+ *       experimental
 *       external/cwe-625
 *       external/cwe-863
 */
--- a/java/ql/src/experimental/Security/CWE/CWE-652/XQueryInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-652/XQueryInjection.ql
@@ -7,6 +7,7 @@
 * @precision high
 * @id java/xquery-injection
 * @tags security
+ *       experimental
 *       external/cwe/cwe-652
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-665/InsecureRmiJmxEnvironmentConfiguration.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-665/InsecureRmiJmxEnvironmentConfiguration.ql
@@ -4,6 +4,7 @@
 * @kind problem
 * @problem.severity error
 * @tags security
+ *       experimental
 *       external/cwe/cwe-665
 * @precision high
 * @id java/insecure-rmi-jmx-server-initialization
--- a/java/ql/src/experimental/Security/CWE/CWE-755/NFEAndroidDoS.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-755/NFEAndroidDoS.ql
@@ -9,6 +9,7 @@
 * @precision medium
 * @id java/android/nfe-local-android-dos
 * @tags security
+ *       experimental
 *       external/cwe/cwe-755
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-759/HashWithoutSalt.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-759/HashWithoutSalt.ql
@@ -6,6 +6,7 @@
 * @precision low
 * @id java/hash-without-salt
 * @tags security
+ *       experimental
 *       external/cwe/cwe-759
 */

--- a/java/ql/src/experimental/Security/CWE/CWE-939/IncorrectURLVerification.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-939/IncorrectURLVerification.ql
@@ -8,6 +8,7 @@
 * @precision medium
 * @id java/incorrect-url-verification
 * @tags security
+ *       experimental
 *       external/cwe/cwe-939
 */