C#: Update analysis change notes.

2026-04-30 03:05:15 +02:00 · 2018-10-17 20:30:52 +01:00
parent 5ad060c1be
commit ee396af385
2 changed files with 3 additions and 2 deletions
--- a/change-notes/1.19/analysis-csharp.md
+++ b/change-notes/1.19/analysis-csharp.md
@@ -8,7 +8,8 @@

 | **Query**                   | **Tags**  | **Purpose**                                                        |
 |-----------------------------|-----------|--------------------------------------------------------------------|
-| *@name of query (Query ID)* | *Tags*    |*Aim of the new query and whether it is enabled by default or not*  |
+| Using a package with a known vulnerability (cs/use-of-vulnerable-package) | security, external/cwe/cwe-937 | Finds project build files that import packages with known vulnerabilities. This is included by default. |
+

 ## Changes to existing queries

--- a/Features/CWE-937/VulnerablePackage.ql
+++ b/Features/CWE-937/VulnerablePackage.ql
@@ -1,5 +1,5 @@
 /**
- * @name Using a package with a known vulnerability.
+ * @name Using a package with a known vulnerability
 * @description Using a package with a known vulnerability is a security risk.
 *              Upgrade the package to a version that does not contain the vulnerability.
 * @kind problem