Python/Ruby: Remove owasp tags

These are no longer correct, since the A1 category changed from 2017 to 2021, see https://owasp.org/Top10/#whats-changed-in-the-top-10-for-2021 Since only a very few queries had these tags, I think we're much better off having them removed.
2026-01-06 11:10:23 +01:00 · 2021-11-16 12:03:50 +01:00
parent 7c3b68b7f8
commit 98e6fc8a88
6 changed files with 0 additions and 6 deletions
--- a/python/ql/src/Security/CWE-022/PathInjection.ql
+++ b/python/ql/src/Security/CWE-022/PathInjection.ql
@@ -9,7 +9,6 @@
 * @id py/path-injection
 * @tags correctness
 *       security
- *       external/owasp/owasp-a1
 *       external/cwe/cwe-022
 *       external/cwe/cwe-023
 *       external/cwe/cwe-036
--- a/python/ql/src/Security/CWE-078/CommandInjection.ql
+++ b/python/ql/src/Security/CWE-078/CommandInjection.ql
@@ -10,7 +10,6 @@
 * @id py/command-line-injection
 * @tags correctness
 *       security
- *       external/owasp/owasp-a1
 *       external/cwe/cwe-078
 *       external/cwe/cwe-088
 */
--- a/python/ql/src/Security/CWE-089/SqlInjection.ql
+++ b/python/ql/src/Security/CWE-089/SqlInjection.ql
@@ -9,7 +9,6 @@
 * @id py/sql-injection
 * @tags security
 *       external/cwe/cwe-089
- *       external/owasp/owasp-a1
 */

 import python
--- a/python/ql/src/Security/CWE-094/CodeInjection.ql
+++ b/python/ql/src/Security/CWE-094/CodeInjection.ql
@@ -9,7 +9,6 @@
 * @precision high
 * @id py/code-injection
 * @tags security
- *       external/owasp/owasp-a1
 *       external/cwe/cwe-094
 *       external/cwe/cwe-095
 *       external/cwe/cwe-116