hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-06 03:00:24 +01:00
Code Issues Packages Projects Releases Wiki Activity

Adjust id tag and fix ending line error

Browse Source
This commit is contained in:
luchua-bc
2020-06-23 12:24:03 +00:00
parent 104f1c3197
commit deabfe6e5c
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
java/ql/src/experimental/Security/CWE/CWE-273/UnsafeCertTrust.ql
View File

@@ -1,8 +1,8 @@
/**
* @id java/unsafe-cert-trust
* @name Unsafe implementation of trusting any certificate or missing hostname verification in SSL configuration
* @description Unsafe implementation of the interface X509TrustManager, HostnameVerifier, and SSLSocket/SSLEngine ignores all SSL certificate validation errors when establishing an HTTPS connection, thereby making the app vulnerable to man-in-the-middle attacks.
* @kind problem
* @id java/unsafe-cert-trust
* @tags security
* external/cwe-273
*/
@@ -225,4 +225,5 @@ where
aa instanceof X509TrustAllManagerInit or
aa instanceof SSLEndpointIdentificationNotSet or
aa instanceof RabbitMQEnableHostnameVerificationNotSet
select aa, "Unsafe configuration of trusted certificates"
select aa, "Unsafe configuration of trusted certificates"