Java: Update query meta data.

michaelnebel · michaelnebel · commit 3631b1592a84 · 2024-11-11T08:08:22.000+01:00
diff --git a/java/src/security/CWE-016/InsecureSpringActuatorConfig.ql b/java/src/security/CWE-016/InsecureSpringActuatorConfig.ql
@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/insecure-spring-actuator-config
+ * @id githubsecuritylab/java/insecure-spring-actuator-config
  * @tags security
- *       experimental
  *       external/cwe/cwe-016
  */
 
diff --git a/java/src/security/CWE-016/SpringBootActuators.ql b/java/src/security/CWE-016/SpringBootActuators.ql
@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/spring-boot-exposed-actuators
+ * @id githubsecuritylab/java/spring-boot-exposed-actuators
  * @tags security
- *       experimental
  *       external/cwe/cwe-16
  */
 
diff --git a/java/src/security/CWE-020/Log4jJndiInjection.ql b/java/src/security/CWE-020/Log4jJndiInjection.ql
@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/log4j-injection
+ * @id githubsecuritylab/java/log4j-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-020
  *       external/cwe/cwe-074
  *       external/cwe/cwe-400
diff --git a/java/src/security/CWE-036/OpenStream.ql b/java/src/security/CWE-036/OpenStream.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity warning
  * @precision medium
- * @id java/openstream-called-on-tainted-url
+ * @id githubsecuritylab/java/openstream-called-on-tainted-url
  * @tags security
- *       experimental
  *       external/cwe/cwe-036
  */
 
diff --git a/java/src/security/CWE-073/FilePathInjection.ql b/java/src/security/CWE-073/FilePathInjection.ql
@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/file-path-injection
+ * @id githubsecuritylab/java/file-path-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-073
  */
 
diff --git a/java/src/security/CWE-089/MyBatisAnnotationSqlInjection.ql b/java/src/security/CWE-089/MyBatisAnnotationSqlInjection.ql
@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/mybatis-annotation-sql-injection
+ * @id githubsecuritylab/java/mybatis-annotation-sql-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-089
  */
 
diff --git a/java/src/security/CWE-089/MyBatisMapperXmlSqlInjection.ql b/java/src/security/CWE-089/MyBatisMapperXmlSqlInjection.ql
@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/mybatis-xml-sql-injection
+ * @id githubsecuritylab/java/mybatis-xml-sql-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-089
  */
 
diff --git a/java/src/security/CWE-1004/InsecureTomcatConfig.ql b/java/src/security/CWE-1004/InsecureTomcatConfig.ql
@@ -4,9 +4,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/tomcat-disabled-httponly
+ * @id githubsecuritylab/java/tomcat-disabled-httponly
  * @tags security
- *       experimental
  *       external/cwe/cwe-1004
  */
 
diff --git a/java/src/security/CWE-1004/SensitiveCookieNotHttpOnly.ql b/java/src/security/CWE-1004/SensitiveCookieNotHttpOnly.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity warning
  * @precision medium
- * @id java/sensitive-cookie-not-httponly
+ * @id githubsecuritylab/java/sensitive-cookie-not-httponly
  * @tags security
- *       experimental
  *       external/cwe/cwe-1004
  */
 
diff --git a/java/src/security/CWE-200/InsecureWebResourceResponse.ql b/java/src/security/CWE-200/InsecureWebResourceResponse.ql
@@ -3,10 +3,9 @@
  * @description An insecure implementation of Android `WebResourceResponse` may lead to leakage of arbitrary
  *               sensitive content.
  * @kind path-problem
- * @id java/insecure-webview-resource-response
+ * @id githubsecuritylab/java/insecure-webview-resource-response
  * @problem.severity error
  * @tags security
- *       experimental
  *       external/cwe/cwe-200
  */
 
diff --git a/java/src/security/CWE-200/SensitiveAndroidFileLeak.ql b/java/src/security/CWE-200/SensitiveAndroidFileLeak.ql
@@ -3,10 +3,9 @@
  * @description Using a path specified in an Android Intent without validation could leak arbitrary
  *              Android configuration file and sensitive user data.
  * @kind path-problem
- * @id java/sensitive-android-file-leak
+ * @id githubsecuritylab/java/sensitive-android-file-leak
  * @problem.severity warning
  * @tags security
- *       experimental
  *       external/cwe/cwe-200
  */
 
diff --git a/java/src/security/CWE-208/PossibleTimingAttackAgainstSignature.ql b/java/src/security/CWE-208/PossibleTimingAttackAgainstSignature.ql
@@ -7,9 +7,8 @@
  * @kind path-problem
  * @problem.severity warning
  * @precision medium
- * @id java/possible-timing-attack-against-signature
+ * @id githubsecuritylab/java/possible-timing-attack-against-signature
  * @tags security
- *       experimental
  *       external/cwe/cwe-208
  */
 
diff --git a/java/src/security/CWE-208/TimingAttackAgainstHeader.ql b/java/src/security/CWE-208/TimingAttackAgainstHeader.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/timing-attack-against-headers-value
+ * @id githubsecuritylab/java/timing-attack-against-headers-value
  * @tags security
- *       experimental
  *       external/cwe/cwe-208
  */
 
diff --git a/java/src/security/CWE-208/TimingAttackAgainstSignature.ql b/java/src/security/CWE-208/TimingAttackAgainstSignature.ql
@@ -8,9 +8,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/timing-attack-against-signature
+ * @id githubsecuritylab/java/timing-attack-against-signature
  * @tags security
- *       experimental
  *       external/cwe/cwe-208
  */
 
diff --git a/java/src/security/CWE-295/JxBrowserWithoutCertValidation.ql b/java/src/security/CWE-295/JxBrowserWithoutCertValidation.ql
@@ -6,9 +6,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/jxbrowser/disabled-certificate-validation
+ * @id githubsecuritylab/java/jxbrowser/disabled-certificate-validation
  * @tags security
- *       experimental
  *       external/cwe/cwe-295
  */
 
diff --git a/java/src/security/CWE-297/IgnoredHostnameVerification.ql b/java/src/security/CWE-297/IgnoredHostnameVerification.ql
@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/ignored-hostname-verification
+ * @id githubsecuritylab/java/ignored-hostname-verification
  * @tags security
- *       experimental
  *       external/cwe/cwe-297
  */
 
diff --git a/java/src/security/CWE-297/InsecureLdapEndpoint.ql b/java/src/security/CWE-297/InsecureLdapEndpoint.ql
@@ -6,9 +6,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/insecure-ldaps-endpoint
+ * @id githubsecuritylab/java/insecure-ldaps-endpoint
  * @tags security
- *       experimental
  *       external/cwe/cwe-297
  */
 
diff --git a/java/src/security/CWE-299/DisabledRevocationChecking.ql b/java/src/security/CWE-299/DisabledRevocationChecking.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/disabled-certificate-revocation-checking
+ * @id githubsecuritylab/java/disabled-certificate-revocation-checking
  * @tags security
- *       experimental
  *       external/cwe/cwe-299
  */
 
diff --git a/java/src/security/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql b/java/src/security/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql
@@ -5,7 +5,7 @@
  * @tags security
  *       cryptography
  *       external/cwe/cwe-327
- * @id java/azure-storage/unsafe-client-side-encryption-in-use
+ * @id githubsecuritylab/java/azure-storage/unsafe-client-side-encryption-in-use
  * @problem.severity error
  * @precision high
  */
diff --git a/java/src/security/CWE-327/UnsafeTlsVersion.ql b/java/src/security/CWE-327/UnsafeTlsVersion.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/unsafe-tls-version
+ * @id githubsecuritylab/java/unsafe-tls-version
  * @tags security
- *       experimental
  *       external/cwe/cwe-327
  */
 
diff --git a/java/src/security/CWE-346/UnvalidatedCors.ql b/java/src/security/CWE-346/UnvalidatedCors.ql
@@ -4,9 +4,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/unvalidated-cors-origin-set
+ * @id githubsecuritylab/java/unvalidated-cors-origin-set
  * @tags security
- *       experimental
  *       external/cwe/cwe-346
  */
 
diff --git a/java/src/security/CWE-347/Auth0NoVerifier.ql b/java/src/security/CWE-347/Auth0NoVerifier.ql
@@ -5,7 +5,7 @@
  * @problem.severity error
  * @security-severity 7.8
  * @precision high
- * @id java/missing-jwt-signature-check-auth0
+ * @id githubsecuritylab/java/missing-jwt-signature-check-auth0
  * @tags security
  *       external/cwe/cwe-347
  */
diff --git a/java/src/security/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql b/java/src/security/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/ip-address-spoofing
+ * @id githubsecuritylab/java/ip-address-spoofing
  * @tags security
- *       experimental
  *       external/cwe/cwe-348
  */
 
diff --git a/java/src/security/CWE-352/JsonpInjection.ql b/java/src/security/CWE-352/JsonpInjection.ql
@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/jsonp-injection
+ * @id githubsecuritylab/java/jsonp-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-352
  */
 
diff --git a/java/src/security/CWE-400/LocalThreadResourceAbuse.ql b/java/src/security/CWE-400/LocalThreadResourceAbuse.ql
@@ -3,7 +3,7 @@
  * @description Using user input directly to control a thread's sleep time could lead to
  *              performance problems or even resource exhaustion.
  * @kind path-problem
- * @id java/local-thread-resource-abuse
+ * @id githubsecuritylab/java/local-thread-resource-abuse
  * @problem.severity recommendation
  * @tags security
  *       external/cwe/cwe-400
diff --git a/java/src/security/CWE-400/ThreadResourceAbuse.ql b/java/src/security/CWE-400/ThreadResourceAbuse.ql
@@ -3,10 +3,9 @@
  * @description Using user input directly to control a thread's sleep time could lead to
  *              performance problems or even resource exhaustion.
  * @kind path-problem
- * @id java/thread-resource-abuse
+ * @id githubsecuritylab/java/thread-resource-abuse
  * @problem.severity warning
  * @tags security
- *       experimental
  *       external/cwe/cwe-400
  */
 
diff --git a/java/src/security/CWE-489/EJBMain.ql b/java/src/security/CWE-489/EJBMain.ql
@@ -4,9 +4,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/main-method-in-enterprise-bean
+ * @id githubsecuritylab/java/main-method-in-enterprise-bean
  * @tags security
- *       experimental
  *       external/cwe/cwe-489
  */
 
diff --git a/java/src/security/CWE-489/WebComponentMain.ql b/java/src/security/CWE-489/WebComponentMain.ql
@@ -4,9 +4,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/main-method-in-web-components
+ * @id githubsecuritylab/java/main-method-in-web-components
  * @tags security
- *       experimental
  *       external/cwe/cwe-489
  */
 
diff --git a/java/src/security/CWE-489/devMode.ql b/java/src/security/CWE-489/devMode.ql
@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/struts-development-mode
+ * @id githubsecuritylab/java/struts-development-mode
  * @tags security
- *       experimental
  *       external/cwe/cwe-489
  */
 
diff --git a/java/src/security/CWE-502/UnsafeDeserializationRmi.ql b/java/src/security/CWE-502/UnsafeDeserializationRmi.ql
@@ -7,9 +7,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/unsafe-deserialization-rmi
+ * @id githubsecuritylab/java/unsafe-deserialization-rmi
  * @tags security
- *       experimental
  *       external/cwe/cwe-502
  */
 
diff --git a/java/src/security/CWE-502/UnsafeSpringExporterInConfigurationClass.ql b/java/src/security/CWE-502/UnsafeSpringExporterInConfigurationClass.ql
@@ -6,9 +6,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/unsafe-deserialization-spring-exporter-in-configuration-class
+ * @id githubsecuritylab/java/unsafe-deserialization-spring-exporter-in-configuration-class
  * @tags security
- *       experimental
  *       external/cwe/cwe-502
  */
 
diff --git a/java/src/security/CWE-502/UnsafeSpringExporterInXMLConfiguration.ql b/java/src/security/CWE-502/UnsafeSpringExporterInXMLConfiguration.ql
@@ -6,9 +6,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/unsafe-deserialization-spring-exporter-in-xml-configuration
+ * @id githubsecuritylab/java/unsafe-deserialization-spring-exporter-in-xml-configuration
  * @tags security
- *       experimental
  *       external/cwe/cwe-502
  */
 
diff --git a/java/src/security/CWE-522-DecompressionBombs/DecompressionBomb.ql b/java/src/security/CWE-522-DecompressionBombs/DecompressionBomb.ql
@@ -5,9 +5,8 @@
  * @problem.severity error
  * @security-severity 7.8
  * @precision high
- * @id java/uncontrolled-file-decompression
+ * @id githubsecuritylab/java/uncontrolled-file-decompression
  * @tags security
- *       experimental
  *       external/cwe/cwe-409
  */
 
diff --git a/java/src/security/CWE-548/InsecureDirectoryConfig.ql b/java/src/security/CWE-548/InsecureDirectoryConfig.ql
@@ -7,9 +7,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/server-directory-listing
+ * @id githubsecuritylab/java/server-directory-listing
  * @tags security
- *       experimental
  *       external/cwe/cwe-548
  */
 
diff --git a/java/src/security/CWE-555/CredentialsInPropertiesFile.ql b/java/src/security/CWE-555/CredentialsInPropertiesFile.ql
@@ -4,9 +4,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision high
- * @id java/credentials-in-properties
+ * @id githubsecuritylab/java/credentials-in-properties
  * @tags security
- *       experimental
  *       external/cwe/cwe-555
  *       external/cwe/cwe-256
  *       external/cwe/cwe-260
diff --git a/java/src/security/CWE-555/PasswordInConfigurationFile.ql b/java/src/security/CWE-555/PasswordInConfigurationFile.ql
@@ -4,9 +4,8 @@
  * @kind problem
  * @problem.severity warning
  * @precision medium
- * @id java/password-in-configuration
+ * @id githubsecuritylab/java/password-in-configuration
  * @tags security
- *       experimental
  *       external/cwe/cwe-555
  *       external/cwe/cwe-256
  *       external/cwe/cwe-260
diff --git a/java/src/security/CWE-598/SensitiveGetQuery.ql b/java/src/security/CWE-598/SensitiveGetQuery.ql
diff --git a/java/src/security/CWE-600/UncaughtServletException.ql b/java/src/security/CWE-600/UncaughtServletException.ql
diff --git a/java/src/security/CWE-601/SpringUrlRedirect.ql b/java/src/security/CWE-601/SpringUrlRedirect.ql
diff --git a/java/src/security/CWE-625/PermissiveDotRegex.ql b/java/src/security/CWE-625/PermissiveDotRegex.ql
diff --git a/java/src/security/CWE-652/XQueryInjection.ql b/java/src/security/CWE-652/XQueryInjection.ql
diff --git a/java/src/security/CWE-665/InsecureRmiJmxEnvironmentConfiguration.ql b/java/src/security/CWE-665/InsecureRmiJmxEnvironmentConfiguration.ql
diff --git a/java/src/security/CWE-755/NFEAndroidDoS.ql b/java/src/security/CWE-755/NFEAndroidDoS.ql
diff --git a/java/src/security/CWE-759/HashWithoutSalt.ql b/java/src/security/CWE-759/HashWithoutSalt.ql
diff --git a/java/src/security/CWE-939/IncorrectURLVerification.ql b/java/src/security/CWE-939/IncorrectURLVerification.ql
