Add security-severity metadata

2026-04-30 03:05:15 +02:00 · 2021-05-24 17:16:22 +01:00
parent e7b9603c5b
commit a594afb828
352 changed files with 364 additions and 0 deletions
--- a/javascript/ql/src/Security/CWE-730/RegExpInjection.ql
+++ b/javascript/ql/src/Security/CWE-730/RegExpInjection.ql
@@ -5,6 +5,7 @@
 *              exponential time on certain inputs.
 * @kind path-problem
 * @problem.severity error
+ * @security-severity 3.6
 * @precision high
 * @id js/regex-injection
 * @tags security
--- a/javascript/ql/src/Security/CWE-730/ServerCrash.ql
+++ b/javascript/ql/src/Security/CWE-730/ServerCrash.ql
@@ -4,9 +4,11 @@
 *              attacks.
 * @kind path-problem
 * @problem.severity warning
+ * @security-severity 3.6
 * @precision high
 * @id js/server-crash
 * @tags security
+ *       external/cwe/cwe-248
 *       external/cwe/cwe-730
 */