hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-18 21:27:08 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add experimental,ml-generated tags

Browse Source
This commit is contained in:
turbo
2022-08-22 15:59:16 +02:00
parent 72c204063d
commit ce2b59ae4a
144 changed files with 160 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
cpp/ql/src/experimental/Likely Bugs/RedundantNullCheckParam.ql
View File

@@ -9,6 +9,7 @@
* @tags reliability
* security
* external/cwe/cwe-476
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-020/LateCheckOfFunctionArgument.ql
View File

@@ -10,6 +10,7 @@
* @tags correctness
* security
* external/cwe/cwe-20
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-020/NoCheckBeforeUnsafePutUser.ql
View File

@@ -12,6 +12,7 @@
* @security-severity 7.5
* @tags security
* external/cwe/cwe-020
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-1041/FindWrapperFunctions.ql
View File

@@ -9,6 +9,7 @@
* maintainability
* security
* external/cwe/cwe-1041
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-1126/DeclarationOfVariableWithUnnecessarilyWideScope.ql
View File

@@ -10,6 +10,7 @@
* @tags correctness
* security
* external/cwe/cwe-1126
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-120/MemoryUnsafeFunctionScan.ql
View File

@@ -7,6 +7,7 @@
* @tags reliability
* security
* external/cwe/cwe-120
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-125/DangerousWorksWithMultibyteOrWideCharacters.ql
View File

@@ -8,6 +8,7 @@
* @tags correctness
* security
* external/cwe/cwe-125
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-190/AllocMultiplicationOverflow.ql
View File

@@ -8,6 +8,7 @@
* correctness
* external/cwe/cwe-190
* external/cwe/cwe-128
* experimental
* @id cpp/multiplication-overflow-in-alloc
*/

1
cpp/ql/src/experimental/Security/CWE/CWE-190/DangerousUseOfTransformationAfterOperation.ql
View File

@@ -8,6 +8,7 @@
* @tags correctness
* security
* external/cwe/cwe-190
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-200/ExposureSensitiveInformationUnauthorizedActor.ql
View File

@@ -10,6 +10,7 @@
* security
* external/cwe/cwe-200
* external/cwe/cwe-264
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-243/IncorrectChangingWorkingDirectory.ql
View File

@@ -9,6 +9,7 @@
* security
* external/cwe/cwe-243
* external/cwe/cwe-252
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-266/IncorrectPrivilegeAssignment.ql
View File

@@ -13,6 +13,7 @@
* external/cwe/cwe-200
* external/cwe/cwe-560
* external/cwe/cwe-687
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-273/PrivilegeDroppingOutoforder.ql
View File

@@ -9,6 +9,7 @@
* @id cpp/drop-linux-privileges-outoforder
* @tags security
* external/cwe/cwe-273
* experimental
* @precision medium
*/

1
cpp/ql/src/experimental/Security/CWE/CWE-285/PamAuthorization.ql
View File

@@ -6,6 +6,7 @@
* @id cpp/pam-auth-bypass
* @tags security
* external/cwe/cwe-285
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-359/PrivateCleartextWrite.ql
View File

@@ -7,6 +7,7 @@
* @id cpp/private-cleartext-write
* @tags security
* external/cwe/cwe-359
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-362/double-fetch.ql
View File

@@ -12,6 +12,7 @@
* @security-severity 7.5
* @tags security
* external/cwe/cwe-362
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-377/InsecureTemporaryFile.ql
View File

@@ -8,6 +8,7 @@
* @tags correctness
* security
* external/cwe/cwe-377
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-401/MemoryLeakOnFailedCallToRealloc.ql
View File

@@ -9,6 +9,7 @@
* @tags correctness
* security
* external/cwe/cwe-401
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-415/DoubleFree.ql
View File

@@ -7,6 +7,7 @@
* @precision medium
* @tags security
* external/cwe/cwe-415
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-476/DangerousUseOfExceptionBlocks.ql
View File

@@ -9,6 +9,7 @@
* security
* external/cwe/cwe-476
* external/cwe/cwe-415
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-561/FindIncorrectlyUsedSwitch.ql
View File

@@ -11,6 +11,7 @@
* external/cwe/cwe-561
* external/cwe/cwe-691
* external/cwe/cwe-478
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-670/DangerousUseSSL_shutdown.ql
View File

@@ -8,6 +8,7 @@
* @tags correctness
* security
* external/cwe/cwe-670
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-675/DoubleRelease.ql
View File

@@ -8,6 +8,7 @@
* @tags security
* external/cwe/cwe-675
* external/cwe/cwe-666
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-691/InsufficientControlFlowManagementAfterRefactoringTheCode.ql
View File

@@ -11,6 +11,7 @@
* @tags correctness
* security
* external/cwe/cwe-691
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-691/InsufficientControlFlowManagementWhenUsingBitOperations.ql
View File

@@ -9,6 +9,7 @@
* @tags correctness
* security
* external/cwe/cwe-691
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-703/FindIncorrectlyUsedExceptions.ql
View File

@@ -10,6 +10,7 @@
* external/cwe/cwe-703
* external/cwe/cwe-248
* external/cwe/cwe-390
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-754/ImproperCheckReturnValueScanf.ql
View File

@@ -9,6 +9,7 @@
* security
* external/cwe/cwe-754
* external/cwe/cwe-908
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-758/UndefinedOrImplementationDefinedBehavior.ql
View File

@@ -9,6 +9,7 @@
* @precision medium
* @tags security
* external/cwe/cwe-758
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-783/OperatorPrecedenceLogicErrorWhenUseBitwiseOrLogicalOperations.ql
View File

@@ -10,6 +10,7 @@
* readability
* external/cwe/cwe-783
* external/cwe/cwe-480
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-783/OperatorPrecedenceLogicErrorWhenUseBoolType.ql
View File

@@ -10,6 +10,7 @@
* security
* external/cwe/cwe-783
* external/cwe/cwe-480
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-787/UnsignedToSignedPointerArith.ql
View File

@@ -7,6 +7,7 @@
* @tags reliability
* security
* external/cwe/cwe-787
* experimental
*/
import cpp

1
cpp/ql/src/experimental/Security/CWE/CWE-788/AccessOfMemoryLocationAfterEndOfBufferUsingStrlen.ql
View File

@@ -9,6 +9,7 @@
* @tags correctness
* security
* external/cwe/cwe-788
* experimental
*/
import cpp

1
csharp/ql/src/experimental/CWE-099/TaintedWebClient.ql
View File

@@ -11,6 +11,7 @@
* external/cwe/cwe-023
* external/cwe/cwe-036
* external/cwe/cwe-073
* experimental
*/
import csharp

1
csharp/ql/src/experimental/CWE-918/RequestForgery.ql
View File

@@ -7,6 +7,7 @@
* @id cs/request-forgery
* @tags security
* external/cwe/cwe-918
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/CWE-1004/CookieWithoutHttpOnly.ql
View File

@@ -10,6 +10,7 @@
* @id cs/web/cookie-httponly-not-set
* @tags security
* external/cwe/cwe-1004
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql
View File

@@ -5,6 +5,7 @@
* @tags security
* cryptography
* external/cwe/cwe-327
* experimental
* @id cs/azure-storage/unsafe-usage-of-client-side-encryption-version
* @problem.severity error
* @precision high

1
csharp/ql/src/experimental/Security Features/CWE-614/CookieWithoutSecure.ql
View File

@@ -10,6 +10,7 @@
* @tags security
* external/cwe/cwe-319
* external/cwe/cwe-614
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/CWE-759/HashWithoutSalt.ql
View File

@@ -6,6 +6,7 @@
* @id cs/hash-without-salt
* @tags security
* external/cwe-759
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/Serialization/DefiningDatasetRelatedType.ql
View File

@@ -5,6 +5,7 @@
* @problem.severity warning
* @id cs/dataset-serialization/defining-dataset-related-type
* @tags security
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/Serialization/DefiningPotentiallyUnsafeXmlSerializer.ql
View File

@@ -6,6 +6,7 @@
* @precision medium
* @id cs/dataset-serialization/defining-potentially-unsafe-xml-serializer
* @tags security
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql
View File

@@ -6,6 +6,7 @@
* @precision medium
* @id cs/dataset-serialization/unsafe-type-used-data-contract-serializer
* @tags security
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/Serialization/XmlDeserializationWithDataSet.ql
View File

@@ -6,6 +6,7 @@
* @precision medium
* @id cs/dataset-serialization/xml-deserialization-with-dataset
* @tags security
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/backdoor/DangerousNativeFunctionCall.ql
View File

@@ -7,6 +7,7 @@
* @id cs/backdoor/dangerous-native-functions
* @tags security
* solorigate
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql
View File

@@ -7,6 +7,7 @@
* @id cs/backdoor/potential-time-bomb
* @tags security
* solorigate
* experimental
*/
import csharp

1
csharp/ql/src/experimental/Security Features/backdoor/ProcessNameToHashTaintFlow.ql
View File

@@ -4,6 +4,7 @@
* @kind path-problem
* @tags security
* solorigate
* experimental
* @problem.severity warning
* @precision medium
* @id cs/backdoor/process-name-to-hash-function

1
go/ql/src/experimental/CWE-090/LDAPInjection.ql
View File

@@ -7,6 +7,7 @@
* @id go/ldap-injection
* @tags security
* external/cwe/cwe-90
* experimental
*/
import go

1
go/ql/src/experimental/CWE-1004/CookieWithoutHttpOnly.ql
View File

@@ -10,6 +10,7 @@
* @id go/cookie-httponly-not-set
* @tags security
* external/cwe/cwe-1004
* experimental
*/
import go

1
go/ql/src/experimental/CWE-285/PamAuthBypass.ql
View File

@@ -8,6 +8,7 @@
* correctness
* external/cwe/cwe-561
* external/cwe/cwe-285
* experimental
* @precision very-high
*/

1
go/ql/src/experimental/CWE-321/HardcodedKeys.ql
View File

@@ -6,6 +6,7 @@
* @id go/hardcoded-key
* @tags security
* external/cwe/cwe-321
* experimental
*/
import go

5
go/ql/src/experimental/CWE-327/WeakCryptoAlgorithm.ql
View File

@@ -5,8 +5,9 @@
* @problem.severity error
* @id go/weak-crypto-algorithm
* @tags security
* external/cwe/cwe-327
* external/cwe/cwe-328
* external/cwe/cwe-327
* external/cwe/cwe-328
* experimental
*/
import go

1
go/ql/src/experimental/CWE-369/DivideByZero.ql
View File

@@ -6,6 +6,7 @@
* @id go/divide-by-zero
* @tags security
* external/cwe/cwe-369
* experimental
*/
import go

3
go/ql/src/experimental/CWE-400/DatabaseCallInLoop.ql
View File

@@ -6,6 +6,9 @@
* @problem.severity warning
* @precision high
* @id go/examples/database-call-in-loop
* @tags security
* external/cwe/cwe-400
* experimental
*/
import go

1
go/ql/src/experimental/CWE-79/HTMLTemplateEscapingPassthrough.ql
View File

@@ -7,6 +7,7 @@
* @id go/html-template-escaping-passthrough
* @tags security
* external/cwe/cwe-79
* experimental
*/
import go

2
go/ql/src/experimental/CWE-807/SensitiveConditionBypass.ql
View File

@@ -8,6 +8,8 @@
* @tags external/cwe/cwe-807
* external/cwe/cwe-247
* external/cwe/cwe-350
* security
* experimental
*/
import go

2
go/ql/src/experimental/CWE-840/ConditionalBypass.ql
View File

@@ -6,6 +6,8 @@
* @kind problem
* @problem.severity warning
* @tags external/cwe/cwe-840
* experimental
* security
*/
import go

1
go/ql/src/experimental/CWE-918/SSRF.ql
View File

@@ -6,6 +6,7 @@
* @problem.severity error
* @precision high
* @tags security
* experimental
* external/cwe/cwe-918
*/

1
go/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
View File

@@ -9,6 +9,7 @@
* @tags security
* external/cwe/cwe-942
* external/cwe/cwe-346
* experimental
*/
import go

1
go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql
View File

@@ -8,6 +8,7 @@
* @tags security
* external/cwe/cwe-119
* external/cwe/cwe-126
* experimental
*/
import go

1
java/ql/src/experimental/Security/CWE/CWE-016/InsecureSpringActuatorConfig.ql
View File

@@ -8,6 +8,7 @@
* @id java/insecure-spring-actuator-config
* @tags security
* external/cwe/cwe-016
* experimental
*/
/*

1
java/ql/src/experimental/Security/CWE/CWE-016/SpringBootActuators.ql
View File

@@ -8,6 +8,7 @@
* @id java/spring-boot-exposed-actuators
* @tags security
* external/cwe/cwe-16
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
View File

@@ -12,6 +12,7 @@
* external/cwe/cwe-074
* external/cwe/cwe-400
* external/cwe/cwe-502
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-036/OpenStream.ql
View File

@@ -8,6 +8,7 @@
* @id java/openstream-called-on-tainted-url
* @tags security
* external/cwe/cwe-036
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
View File

@@ -9,6 +9,7 @@
* @id java/file-path-injection
* @tags security
* external/cwe-073
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
View File

@@ -9,6 +9,7 @@
* @tags security
* external/cwe/cwe-078
* external/cwe/cwe-088
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-089/MyBatisAnnotationSqlInjection.ql
View File

@@ -9,6 +9,7 @@
* @id java/mybatis-annotation-sql-injection
* @tags security
* external/cwe/cwe-089
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-089/MyBatisMapperXmlSqlInjection.ql
View File

@@ -9,6 +9,7 @@
* @id java/mybatis-xml-sql-injection
* @tags security
* external/cwe/cwe-089
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/BeanShellInjection.ql
View File

@@ -8,6 +8,7 @@
* @id java/beanshell-injection
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/InsecureDexLoading.ql
View File

@@ -8,6 +8,7 @@
* @id java/android-insecure-dex-loading
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/JShellInjection.ql
View File

@@ -8,6 +8,7 @@
* @id java/jshell-injection
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/JakartaExpressionInjection.ql
View File

@@ -8,6 +8,7 @@
* @id java/javaee-expression-injection
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/JythonInjection.ql
View File

@@ -9,6 +9,7 @@
* @tags security
* external/cwe/cwe-094
* external/cwe/cwe-095
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/ScriptInjection.ql
View File

@@ -8,6 +8,7 @@
* @id java/unsafe-eval
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/SpringImplicitViewManipulation.ql
View File

@@ -7,6 +7,7 @@
* @id java/spring-view-manipulation-implicit
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/SpringViewManipulation.ql
View File

@@ -7,6 +7,7 @@
* @id java/spring-view-manipulation
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-094/TemplateInjection.ql
View File

@@ -7,6 +7,7 @@
* @id java/server-side-template-injection
* @tags security
* external/cwe/cwe-094
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-1004/InsecureTomcatConfig.ql
View File

@@ -7,6 +7,7 @@
* @id java/tomcat-disabled-httponly
* @tags security
* external/cwe/cwe-1004
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-1004/SensitiveCookieNotHttpOnly.ql
View File

@@ -8,6 +8,7 @@
* @id java/sensitive-cookie-not-httponly
* @tags security
* external/cwe/cwe-1004
* experimental
*/
/*

1
java/ql/src/experimental/Security/CWE/CWE-200/InsecureWebResourceResponse.ql
View File

@@ -7,6 +7,7 @@
* @problem.severity error
* @tags security
* external/cwe/cwe-200
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-200/SensitiveAndroidFileLeak.ql
View File

@@ -7,6 +7,7 @@
* @problem.severity warning
* @tags security
* external/cwe/cwe-200
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-208/PossibleTimingAttackAgainstSignature.ql
View File

@@ -10,6 +10,7 @@
* @id java/possible-timing-attack-against-signature
* @tags security
* external/cwe/cwe-208
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstHeader.ql
View File

@@ -8,6 +8,7 @@
* @id java/timing-attack-against-headers-value
* @tags security
* external/cwe/cwe-208
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-208/TimingAttackAgainstSignature.ql
View File

@@ -11,6 +11,7 @@
* @id java/timing-attack-against-signature
* @tags security
* external/cwe/cwe-208
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-295/JxBrowserWithoutCertValidation.ql
View File

@@ -9,6 +9,7 @@
* @id java/jxbrowser/disabled-certificate-validation
* @tags security
* external/cwe/cwe-295
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-297/IgnoredHostnameVerification.ql
View File

@@ -8,6 +8,7 @@
* @id java/ignored-hostname-verification
* @tags security
* external/cwe/cwe-297
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-297/InsecureLdapEndpoint.ql
View File

@@ -9,6 +9,7 @@
* @id java/insecure-ldaps-endpoint
* @tags security
* external/cwe/cwe-297
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
View File

@@ -8,6 +8,7 @@
* @id java/disabled-certificate-revocation-checking
* @tags security
* external/cwe/cwe-299
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.ql
View File

@@ -6,6 +6,7 @@
* @id java/hardcoded-jwt-key
* @tags security
* external/cwe/cwe-321
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-326/InsufficientKeySize.ql
View File

@@ -7,6 +7,7 @@
* @id java/insufficient-key-size
* @tags security
* external/cwe/cwe-326
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-327/UnsafeTlsVersion.ql
View File

@@ -8,6 +8,7 @@
* @id java/unsafe-tls-version
* @tags security
* external/cwe/cwe-327
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-346/UnvalidatedCors.ql
View File

@@ -7,6 +7,7 @@
* @id java/unvalidated-cors-origin-set
* @tags security
* external/cwe/cwe-346
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql
View File

@@ -8,6 +8,7 @@
* @id java/ip-address-spoofing
* @tags security
* external/cwe/cwe-348
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-352/JsonpInjection.ql
View File

@@ -8,6 +8,7 @@
* @id java/jsonp-injection
* @tags security
* external/cwe/cwe-352
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.ql
View File

@@ -7,6 +7,7 @@
* @problem.severity warning
* @tags security
* external/cwe/cwe-400
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-470/UnsafeReflection.ql
View File

@@ -8,6 +8,7 @@
* @id java/unsafe-reflection
* @tags security
* external/cwe/cwe-470
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-489/EJBMain.ql
View File

@@ -7,6 +7,7 @@
* @id java/main-method-in-enterprise-bean
* @tags security
* external/cwe/cwe-489
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-489/WebComponentMain.ql
View File

@@ -7,6 +7,7 @@
* @id java/main-method-in-web-components
* @tags security
* external/cwe/cwe-489
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-489/devMode.ql
View File

@@ -8,6 +8,7 @@
* @id java/struts-development-mode
* @tags security
* external/cwe/cwe-489
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-502/UnsafeDeserializationRmi.ql
View File

@@ -10,6 +10,7 @@
* @id java/unsafe-deserialization-rmi
* @tags security
* external/cwe/cwe-502
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInConfigurationClass.ql
View File

@@ -9,6 +9,7 @@
* @id java/unsafe-deserialization-spring-exporter-in-configuration-class
* @tags security
* external/cwe/cwe-502
* experimental
*/
import java

1
java/ql/src/experimental/Security/CWE/CWE-502/UnsafeSpringExporterInXMLConfiguration.ql
View File

@@ -9,6 +9,7 @@
* @id java/unsafe-deserialization-spring-exporter-in-xml-configuration
* @tags security
* external/cwe/cwe-502
* experimental
*/
import java

Some files were not shown because too many files have changed in this diff Show More