hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 18:25:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6282 from aschackmull/java/query-metadata2

Browse Source 
Java: Add missing metadata.
This commit is contained in:
Anders Schack-Mulligen
2021-07-14 15:17:27 +02:00
committed by GitHub
parent 11fc23ba09 9034b03c7b
commit a0481bda91
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/experimental/Security/CWE/CWE-016/InsecureSpringActuatorConfig.ql
View File

@@ -3,6 +3,8 @@
* @description Exposed Spring Boot Actuator through configuration files without declarative or procedural
* security enforcement leads to information leak or even remote code execution.
* @kind problem
* @problem.severity error
* @precision high
* @id java/insecure-spring-actuator-config
* @tags security
* external/cwe-016