RULEAPI-653: Add a new language identifier for secrets detection rules (#154)

frontend/src/RulePage.tsx

@@ -66,6 +66,7 @@ const languageToJiraProject = new Map(Object.entries({
   "KOTLIN": "SONARKT",
   "SCALA": "SONARSLANG",
   "GO": "SONARSLANG",
+  "SECRETS": "SECRETS",
   "SWIFT": "SONARSWIFT",
   "TSQL": "SONARTSQL",
   "VB6": "SONARVBSIX",
@@ -102,6 +103,7 @@ const languageToGithubProject = new Map(Object.entries({
   "XML": "sonar-xml",
   "CLOUDFORMATION": "sonar-iac",
   "TERRAFORM": "sonar-iac",
+  "SECRETS": "sonar-secrets",
 }));
 
 function ticketsAndImplementationPRsLinks(ruleNumber: string, title: string, language?: string) {

frontend/src/utils/useRuleCoverage.ts

@@ -26,6 +26,7 @@ export function useRuleCoverage() {
     'plsql': ['PLSQL'],
     'python': ['PY'],
     'rpg': ['RPG'],
+    'secrets': ['SECRETS'],
     'swift': ['SWIFT'],
     'tsql': ['TSQL'],
     'vb6': ['VB'],

rspec-tools/rspec_tools/utils.py

@@ -23,6 +23,7 @@ LANG_TO_LABEL = {'abap': 'abap',
                  'ruby': 'slang',
                  'rust': 'rust',
                  'scala': 'slang',
+                 'secrets': 'secrets',
                  'solidity': 'solidity',
                  'swift': 'swift',
                  'tsql': 'tsql',

rule_coverage/coverage.py

@@ -6,7 +6,7 @@ from git import Repo
 from git import Git
 from pathlib import Path
 
-repos=['sonar-abap','sonar-cpp','sonar-cobol','sonar-dotnet','sonar-css','sonar-flex','slang-enterprise','sonar-java','SonarJS','sonar-php','sonar-pli','sonar-plsql','sonar-python','sonar-rpg','sonar-swift','sonar-tsql','sonar-vb','sonar-html','sonar-xml','sonar-kotlin']
+repos=['sonar-abap','sonar-cpp','sonar-cobol','sonar-dotnet','sonar-css','sonar-flex','slang-enterprise','sonar-java','SonarJS','sonar-php','sonar-pli','sonar-plsql','sonar-python','sonar-rpg','sonar-swift','sonar-tsql','sonar-vb','sonar-html','sonar-xml','sonar-kotlin', 'sonar-secrets']
 #repos=['sonar-php','sonar-pli','sonar-plsql','sonar-python','sonar-rpg','sonar-swift','sonar-tsql','sonar-vb','sonar-html','sonar-xml']
 
 def load_json(file):

rules/S6290/abap/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/abap/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/apex/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/apex/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/cfamily/metadata.json

@@ -1,8 +0,0 @@
-{
-  "tags": [
-    "cwe",
-    "cert",
-    "sans-top25-porous",
-    "owasp-a2"
-  ]
-}

rules/S6290/cfamily/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/cobol/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/cobol/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/csharp/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/csharp/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/css/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/css/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/flex/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/flex/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/go/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/go/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/html/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/html/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/java/metadata.json

@@ -1,8 +0,0 @@
-{
-  "tags": [
-    "cwe",
-    "cert",
-    "sans-top25-porous",
-    "owasp-a2"
-  ]
-}

rules/S6290/java/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/javascript/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/javascript/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/kotlin/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/kotlin/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/metadata.json

@@ -1,41 +1,2 @@
 {
-  "title": "Amazon Web Services credentials should not be disclosed",
-  "type": "VULNERABILITY",
-  "status": "ready",
-  "remediation": {
-    "func": "Constant\/Issue",
-    "constantCost": "30min"
-  },
-  "tags": [
-    "cwe",
-    "sans-top25-porous",
-    "owasp-a2"
-  ],
-  "extra": {
-    "coveredLanguages": [
-      
-    ],
-    "replacementRules": [
-      
-    ]
-  },
-  "defaultSeverity": "Blocker",
-  "ruleSpecification": "RSPEC-6290",
-  "sqKey": "S6290",
-  "scope": "All",
-  "securityStandards": {
-    "CWE": [
-      798,
-      259
-    ],
-    "OWASP": [
-      "A2"
-    ],
-    "CERT": [
-      "MSC03-J."
-    ]
-  },
-  "defaultQualityProfiles": [
-    "Sonar way"
-  ]
 }

rules/S6290/php/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/php/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/pli/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/pli/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/plsql/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/plsql/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/python/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/python/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/rpg/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/rpg/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/ruby/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/ruby/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/rust/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/rust/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/scala/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/scala/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/secrets/metadata.json

@@ -0,0 +1,42 @@
+{
+    "title": "Amazon Web Services credentials should not be disclosed",
+    "type": "VULNERABILITY",
+    "status": "ready",
+    "remediation": {
+      "func": "Constant\/Issue",
+      "constantCost": "30min"
+    },
+    "tags": [
+      "cwe",
+      "sans-top25-porous",
+      "owasp-a2"
+    ],
+    "extra": {
+      "coveredLanguages": [
+        
+      ],
+      "replacementRules": [
+        
+      ]
+    },
+    "defaultSeverity": "Blocker",
+    "ruleSpecification": "RSPEC-6290",
+    "sqKey": "S6290",
+    "scope": "All",
+    "securityStandards": {
+      "CWE": [
+        798,
+        259
+      ],
+      "OWASP": [
+        "A2"
+      ],
+      "CERT": [
+        "MSC03-J."
+      ]
+    },
+    "defaultQualityProfiles": [
+      "Sonar way"
+    ]
+  }
+  

rules/S6290/solidity/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/solidity/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/swift/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/swift/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/tsql/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/tsql/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/vb6/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/vb6/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/vbnet/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/vbnet/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6290/xml/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6290/xml/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/abap/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/abap/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/apex/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/apex/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/cfamily/metadata.json

@@ -1,8 +0,0 @@
-{
-  "tags": [
-    "cwe",
-    "cert",
-    "sans-top25-porous",
-    "owasp-a2"
-  ]
-}

rules/S6292/cfamily/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/cobol/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/cobol/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/csharp/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/csharp/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/css/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/css/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/flex/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/flex/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/go/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/go/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/html/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/html/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/java/metadata.json

@@ -1,8 +0,0 @@
-{
-  "tags": [
-    "cwe",
-    "cert",
-    "sans-top25-porous",
-    "owasp-a2"
-  ]
-}

rules/S6292/java/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/javascript/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/javascript/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/kotlin/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/kotlin/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/metadata.json

@@ -1,41 +1,2 @@
 {
-  "title": "Amazon MWS credentials should not be disclosed",
-  "type": "VULNERABILITY",
-  "status": "ready",
-  "remediation": {
-    "func": "Constant\/Issue",
-    "constantCost": "30min"
-  },
-  "tags": [
-    "cwe",
-    "sans-top25-porous",
-    "owasp-a2"
-  ],
-  "extra": {
-    "coveredLanguages": [
-      
-    ],
-    "replacementRules": [
-      
-    ]
-  },
-  "defaultSeverity": "Blocker",
-  "ruleSpecification": "RSPEC-6292",
-  "sqKey": "S6292",
-  "scope": "All",
-  "securityStandards": {
-    "CWE": [
-      798,
-      259
-    ],
-    "OWASP": [
-      "A2"
-    ],
-    "CERT": [
-      "MSC03-J."
-    ]
-  },
-  "defaultQualityProfiles": [
-    "Sonar way"
-  ]
 }

rules/S6292/php/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/php/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/pli/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/pli/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/plsql/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/plsql/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/python/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/python/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/rpg/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/rpg/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/ruby/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/ruby/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/rust/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/rust/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]

rules/S6292/scala/metadata.json

@@ -1,3 +0,0 @@
-{
-  
-}

rules/S6292/scala/rule.adoc

@@ -1 +0,0 @@
-include::../rule.adoc[]