Java: Update query meta data and library paths.

Author: michaelnebel

java/lib/semmle/code/java/security/DecompressionBombQuery.qll

@@ -1,5 +1,5 @@
-import experimental.semmle.code.java.security.FileAndFormRemoteSource
-import experimental.semmle.code.java.security.DecompressionBomb::DecompressionBomb
+import semmle.code.java.security.FileAndFormRemoteSource
+import semmle.code.java.security.DecompressionBomb::DecompressionBomb
 
 module DecompressionBombsConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }

java/src/security/CWE-016/InsecureSpringActuatorConfig.ql

@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/insecure-spring-actuator-config
+ * @id githubsecuritylab/java/insecure-spring-actuator-config
  * @tags security
- *       experimental
  *       external/cwe/cwe-016
  */
 

java/src/security/CWE-016/SpringBootActuators.ql

@@ -5,9 +5,8 @@
  * @kind problem
  * @problem.severity error
  * @precision high
- * @id java/spring-boot-exposed-actuators
+ * @id githubsecuritylab/java/spring-boot-exposed-actuators
  * @tags security
- *       experimental
  *       external/cwe/cwe-16
  */
 

java/src/security/CWE-020/Log4jJndiInjection.ql

@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/log4j-injection
+ * @id githubsecuritylab/java/log4j-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-020
  *       external/cwe/cwe-074
  *       external/cwe/cwe-400

java/src/security/CWE-036/OpenStream.ql

@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity warning
  * @precision medium
- * @id java/openstream-called-on-tainted-url
+ * @id githubsecuritylab/java/openstream-called-on-tainted-url
  * @tags security
- *       experimental
  *       external/cwe/cwe-036
  */
 

java/src/security/CWE-073/FilePathInjection.ql

@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/file-path-injection
+ * @id githubsecuritylab/java/file-path-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-073
  */
 

java/src/security/CWE-089/MyBatisAnnotationSqlInjection.ql

@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/mybatis-annotation-sql-injection
+ * @id githubsecuritylab/java/mybatis-annotation-sql-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-089
  */
 

java/src/security/CWE-089/MyBatisMapperXmlSqlInjection.ql

@@ -6,9 +6,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/mybatis-xml-sql-injection
+ * @id githubsecuritylab/java/mybatis-xml-sql-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-089
  */
 

java/src/security/CWE-094/BeanShellInjection.ql

@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/beanshell-injection
+ * @id githubsecuritylab/java/beanshell-injection
  * @tags security
- *       experimental
  *       external/cwe/cwe-094
  */
 

java/src/security/CWE-094/InsecureDexLoading.ql

@@ -5,9 +5,8 @@
  * @kind path-problem
  * @problem.severity error
  * @precision high
- * @id java/android-insecure-dex-loading
+ * @id githubsecuritylab/java/android-insecure-dex-loading
  * @tags security
- *       experimental
  *       external/cwe/cwe-094
  */