Add change note and severity score

2026-04-30 03:05:15 +02:00 · 2021-11-15 15:55:28 +01:00
parent d58bb4753e
commit 77c2b43560
2 changed files with 5 additions and 0 deletions
--- a/java/ql/src/Security/CWE/CWE-295/InsecureTrustManager.ql
+++ b/java/ql/src/Security/CWE/CWE-295/InsecureTrustManager.ql
@@ -3,6 +3,7 @@
 * @description Trusting all certificates allows an attacker to perform a machine-in-the-middle attack.
 * @kind path-problem
 * @problem.severity error
+ * @security-severity 7.5
 * @precision high
 * @id java/insecure-trustmanager
 * @tags security
--- a/java/ql/src/change-notes/2021-11-15-insecure-trustamanger-query.md
+++ b/java/ql/src/change-notes/2021-11-15-insecure-trustamanger-query.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* The query "`TrustManager` that accepts all certificates" (`java/insecure-trustmanager`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @intrigus-lgtm](https://github.com/github/codeql/pull/4879).