ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,224 Commits 329 Branches 2 Tags
Commit Graph

5224 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot]
f7e3f45cf3
Create rule S7200: Avoid resizing a vector to zero using vec.resize(0, value) (#4677) 2025-03-18 13:40:42 +01:00
Egon Okerman
734c90357c
Modify rule S2092: Add FastAPI (APPSEC-1260) (#3413) 
* Fix Flask docs

* Add FastAPI example
 2025-03-18 09:59:43 +00:00
Pierre-Loup
1dc3769b22
Modify rule S3649: Add databases support (APPSEC-1251) (#3381) 2025-03-18 09:31:43 +00:00
SonarTech
c02b8cfead update coverage information 2025-03-18 02:45:20 +00:00
github-actions[bot]
7be11bd842
Modify S3649: add Kotlin (SONARSEC-6147) (#4796) 2025-03-17 14:50:30 +00:00
Antonio Aversa
3d015e3518
Update rule S6474: Update message and highlighting (SONARKT-600) (#4723) 2025-03-17 13:59:11 +00:00
github-actions[bot]
697e49fc2c
Create rule S7410: Keyboard cache should be disabled for password inputs (SONARKT-583) (#4724) 2025-03-17 13:51:06 +00:00
Pierre-Loup
0884cdba3c Apply review suggestion 2025-03-17 14:32:34 +01:00
pierre-loup-tristant-sonarsource
99d5ce6339 Create rule S7416 2025-03-17 14:32:34 +01:00
Pierre-Loup
429661e018
Update issue messages for S6474 (#4758) 2025-03-17 12:43:15 +00:00
Pierre-Loup
d608b6dedb
Revert "Update S4507: Add kotlin code examples (SONARKT-580) (#4708)" (#4755) 
This reverts commit d63f01a9b137c9a010f1f81a29cf800fba5cf438.
 2025-03-17 12:36:22 +00:00
Eric Morand
7c9aad50bf
RULEAPI-836 - Add compatibleLanguages to javascript rule manifests (#4731) 2025-03-17 09:58:46 +00:00
lpilastri
693507a8ed
Modify rule S7190: improve code examples (#4795) 2025-03-17 10:53:53 +01:00
Ilia Kebets
c7f2158161
JS-641 Modify S3516 description: improve example (#4778) 2025-03-17 07:10:53 +01:00
SonarTech
f284ff36ad update coverage information 2025-03-15 02:43:13 +00:00
lpilastri
6507098d55
Modify rule S7180: improve description (#4777) 2025-03-14 16:50:45 +01:00
erwan-serandour
5b2ef9ae42
Modify rule S7186: update description to focus more explicitly on the Data Repository (#4787) 2025-03-14 16:30:40 +01:00
Massimo Paladin
85743bd38f GH actions: use ubuntu-latest instead of ubuntu-20.04 2025-03-14 16:19:47 +01:00
Egon Okerman
0c99d2979a
Change metadata (#4748) 2025-03-14 08:15:43 +00:00
SonarTech
13017974d0 update coverage information 2025-03-14 02:43:53 +00:00
SonarTech
69a0045069 update coverage information 2025-03-13 02:45:03 +00:00
github-actions[bot]
c6cbb0a4bd
Create rule S7134 (#4740) 
Co-authored-by: Marco Kaufmann <marco.kaufmann@sonarsource.com>
 2025-03-12 17:55:17 +01:00
github-actions[bot]
51dd4ca773
Create rule S7197 (#4739) 2025-03-12 17:44:22 +01:00
github-actions[bot]
b6559d9c46
Create rule S7409: Exposing Java interfaces in WebViews is security-sensitive (SONARKT-571) (#4721) 
* Create rule S7409

* Initial commit

* Use double code tags everywhere

* Rephrase the Ask Yourself Whether section

---------

Co-authored-by: egon-okerman-sonarsource <egon-okerman-sonarsource@users.noreply.github.com>
Co-authored-by: Egon Okerman <egon.okerman@sonarsource.com>
 2025-03-12 10:05:03 +01:00
SonarTech
29c60e929f update coverage information 2025-03-12 02:44:08 +00:00
Peter Trifanov
db6114afab
SONARGO-126 S1764 Improve RSPEC to cover a check for NaN (#4738) 2025-03-11 13:04:12 +00:00
tomasz-tylenda-sonarsource
d204203515
SONARJAVA-5401 S6809 Fix incomplete code in an example (#4737) 2025-03-11 11:55:00 +01:00
SonarTech
dd3bb762aa update coverage information 2025-03-11 02:44:35 +00:00
Solal Pirelli
5b31409df5
COBOL S1289 (COBOL.UnusedDataItem): Ignore EXTERNAL data items (#3985) 2025-03-10 09:00:37 +00:00
SonarTech
3c16fb5a55 update coverage information 2025-03-10 02:31:28 +00:00
SonarTech
71238b6d5c update coverage information 2025-03-08 02:29:56 +00:00
Quentin Jaquier
e7c5865c64
SONARGO-393 Modify rule S4423 for Go: remove examples for HTTP servers (#4726) 2025-03-07 14:04:22 +01:00
Pavel Mikula
c9e1585367
Autoclose issues created by Jira integration (#4722) 
This will enable the automation to close issues that it created, to keep things more cleaned up.

Manually created issues will not be affected.
 2025-03-07 08:30:57 +00:00
SonarTech
805318ee1b update coverage information 2025-03-07 02:44:23 +00:00
github-actions[bot]
e9f98eab67
Create rule S7204: Obfuscation should be enabled for release builds (SONARKT-579) (#4691) 
* Create rule S7204

* Add initial rule text

* Take out empty lines from example

* Implement suggested review changes

---------

Co-authored-by: egon-okerman-sonarsource <egon-okerman-sonarsource@users.noreply.github.com>
Co-authored-by: Egon Okerman <egon.okerman@sonarsource.com>
 2025-03-06 18:07:07 +01:00
github-actions[bot]
b34a35ee48
Create rule S7206: Implicit PendingIntents should be immutable (SONARKT-581) (#4710) 
* Create rule S7206

* Initial commit

* Fix code tags

* Fix typo

---------

Co-authored-by: egon-okerman-sonarsource <egon-okerman-sonarsource@users.noreply.github.com>
Co-authored-by: Egon Okerman <egon.okerman@sonarsource.com>
 2025-03-06 15:03:31 +00:00
github-actions[bot]
1f6f5da0e3
Create rule S7207: Components should be explicitly exported (#4713) 2025-03-06 15:48:28 +01:00
github-actions[bot]
8dc1c62edd
Create rule S6474: Using remote artifacts without authenticity and integrity checks is security-sensitive (SONARKT-574) (#4720) 2025-03-06 11:18:16 +01:00
SonarTech
1ae4d71783 update coverage information 2025-03-06 02:44:11 +00:00
SonarTech
e032cf53ea update coverage information 2025-03-05 02:44:02 +00:00
teemu-rytilahti-sonarsource
8586551b59
Add newlines around includes in secrets template (#4718) 
* Add newlines around includes in secrets template

* Mention that new lines are needed around includes

---------

Co-authored-by: Daniel Teuchert <daniel.teuchert@sonarsource.com>
Co-authored-by: daniel-teuchert-sonarsource <141642369+daniel-teuchert-sonarsource@users.noreply.github.com>
 2025-03-04 09:50:45 +01:00
SonarTech
91feb0da97 update coverage information 2025-03-04 02:43:53 +00:00
github-actions[bot]
909d3d025a
Create rule S7199 (#4676) 
* Create rule S7199

* Add initial draft

* Mark rule as beta

* Generalize the contents, add commented out include directives for all available commons

* Move variables on top of the file for easy editing, add descriptions to impacts, fix ordering of common fixes

* Add generic impact text from S6652

* Fix unwanted whitespace change

* Add missing mandatory newlines between comments and includes

---------

Co-authored-by: teemu-rytilahti-sonarsource <teemu-rytilahti-sonarsource@users.noreply.github.com>
Co-authored-by: Teemu Rytilahti <teemu.rytilahti@sonarsource.com>
 2025-03-03 13:44:04 +01:00
teemu-rytilahti-sonarsource
d76bab68bd
SONARTEXT-328 Improve generic secret template (#4714) 
* Revise the secret rspec template

* Set status=beta for new secrets

* Revert back to old values for example_{secret,name,env} vars
 2025-03-03 10:25:53 +00:00
SonarTech
3077f8ce6e update coverage information 2025-03-01 02:44:45 +00:00
zglicz
f0986b7056
Update S6426 to scope Tests (#4716) 
Noticed this through the new configs realignment
 2025-02-28 16:48:16 +01:00
github-actions[bot]
df5229c7be
Create rule S7203: Java Keystore files should not disclose cryptographic private keys (#4685) 2025-02-28 08:05:15 +00:00
SonarTech
c3d5e7ae01 update coverage information 2025-02-28 02:43:49 +00:00
daniel-teuchert-sonarsource
76ccee7856
Fix multiple broken links (#4712) 
* Fix multiple broken links

* Remove postman blog post because the link does not work properly

* Re add postman resource

* Undo postman changes
 2025-02-27 16:05:39 +01:00
github-actions[bot]
7cd779c09a
Create rule S7201: Exposing the Android file system to WebViews is security-sensitive (#4680) 2025-02-27 14:46:30 +00:00