hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add security-severity metadata

Browse Source
This commit is contained in:
Calum Grant
2021-05-24 17:16:22 +01:00
parent e7b9603c5b
commit a594afb828
352 changed files with 364 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/src/AngularJS/DisablingSce.ql
View File

@@ -3,11 +3,13 @@
* @description Disabling strict contextual escaping (SCE) can cause security vulnerabilities.
* @kind problem
* @problem.severity warning
* @security-severity 5.9
* @precision very-high
* @id js/angular/disabling-sce
* @tags security
* maintainability
* frameworks/angularjs
* external/cwe/cwe-116
*/
import javascript

2
javascript/ql/src/AngularJS/DoubleCompilation.ql
View File

@@ -4,10 +4,12 @@
* unexpected behavior of directives, performance problems, and memory leaks.
* @kind problem
* @problem.severity warning
* @security-severity 5.9
* @id js/angular/double-compilation
* @tags reliability
* frameworks/angularjs
* security
* external/cwe/cwe-1176
* @precision very-high
*/

1
javascript/ql/src/AngularJS/InsecureUrlWhitelist.ql
View File

@@ -3,6 +3,7 @@
* @description URL whitelists that are too permissive can cause security vulnerabilities.
* @kind problem
* @problem.severity warning
* @security-severity 6.4
* @precision very-high
* @id js/angular/insecure-url-whitelist
* @tags security