Pierre-Loup
e769e586c9
Update security rules: add OWASP Mobile Top 10 2024 security standard (APPSEC-2383) ( #4660 )
2025-02-19 17:19:00 +01:00
Jamie Anderson
9ee16daa47
Modify rules: Add STIG AS&D 2023-06-08 mappings ( #3914 )
...
* Update JSON schema to include STIG ASD 2023-06-08 mapping
* Update rules to add STIG metadata mappings
---------
Co-authored-by: Loris Sierra <loris.sierra@sonarsource.com>
2024-05-06 08:56:31 +02:00
gaetan-ferry-sonarsource
7ca7930228
Modify rule S2053: Add an exception section for key derivation use case of KDFs ( #3700 )
...
* Adding an exception section covering key derivation use cases.
* Updating recommended salt length to 256 bits as recommended by NIST
* Improve title to make it explicit we don't target KDF
* Altered some small points
---------
Co-authored-by: Egon Okerman <egon.okerman@sonarsource.com>
2024-03-07 18:20:49 +01:00
Egon Okerman
d1417e82f8
Modify CWE and OWASP Top 10 links to follow standard link format (APPSEC-1134) ( #3529 )
...
* Fix all CWE references
* Fix all OWASP references
* Fix missing CWE prefixes
2024-01-15 17:15:56 +01:00
hendrik-buchwald-sonarsource
a2e277ab30
Modify rule S2053: LaYC format ( #2335 )
2023-07-06 10:32:19 +02:00
