Update rule metadata for 3.20 (#1280)

nils-werner-sonarsource · web-flow · commit a98dda075771 · 2022-11-03T17:31:33.000+01:00
diff --git a/python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S6303.html b/python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S6303.html
@@ -76,15 +76,8 @@ <h2>Compliant Solution</h2>
 </pre>
 <h2>See</h2>
 <ul>
-  <li> <a href="https://owasp.org/Top10/A02_2021-Cryptographic_Failures/">OWASP Top 10 2021 Category A2</a> - Cryptographic Failures </li>
-  <li> <a href="https://owasp.org/Top10/A04_2021-Insecure_Design/">OWASP Top 10 2021 Category A4</a> - Insecure Design </li>
-  <li> <a href="https://owasp.org/Top10/A05_2021-Security_Misconfiguration/">OWASP Top 10 2021 Category A5</a> - Security Misconfiguration </li>
   <li> <a href="https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html">AWS Documentation</a> - Encrypting Amazon RDS
   resources </li>
-  <li> <a href="https://owasp.org/www-project-top-ten/2017/A3_2017-Sensitive_Data_Exposure">OWASP Top 10 2017 Category A3</a> - Sensitive Data
-  Exposure </li>
-  <li> <a href="https://owasp.org/www-project-top-ten/2017/A6_2017-Security_Misconfiguration.html">OWASP Top 10 2017 Category A6</a> - Security
-  Misconfiguration </li>
   <li> <a href="https://cwe.mitre.org/data/definitions/311">MITRE, CWE-311</a> - Missing Encryption of Sensitive Data </li>
 </ul>
 
diff --git a/python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S6308.html b/python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S6308.html
@@ -1,12 +1,12 @@
-<p>Amazon OpenSearch Service is a managed service to host OpenSearch instances. It replaces Elasticsearch Service, which has been deprecated. To
-harden domain (cluster) data in case of unauthorized access, OpenSearch provides data-at-rest encryption if the engine is OpenSearch or Elasticsearch
-with a version of 5.1 or above. Enabling encryption at rest will help protect:</p>
+<p>Amazon OpenSearch Service is a managed service to host OpenSearch instances. It replaces Elasticsearch Service, which has been deprecated.</p>
+<p>To harden domain (cluster) data in case of unauthorized access, OpenSearch provides data-at-rest encryption if the engine is OpenSearch (any
+version), or Elasticsearch with a version of 5.1 or above. Enabling encryption at rest will help protect:</p>
 <ul>
-  <li> Indices </li>
-  <li> Logs </li>
-  <li> Swap files </li>
-  <li> Data in the application directory </li>
-  <li> Automated snapshots </li>
+  <li> indices </li>
+  <li> logs </li>
+  <li> swap files </li>
+  <li> data in the application directory </li>
+  <li> automated snapshots </li>
 </ul>
 <p>Thus, adversaries cannot access the data if they gain physical access to the storage medium.</p>
 <h2>Ask Yourself Whether</h2>
@@ -16,8 +16,8 @@ <h2>Ask Yourself Whether</h2>
 </ul>
 <p>There is a risk if you answered yes to any of those questions.</p>
 <h2>Recommended Secure Coding Practices</h2>
-<p>It’s recommended to encrypt OpenSearch domains that contain sensitive information. OpenSearch handles encryption and decryption transparently, so
-no further modifications to the application are necessary.</p>
+<p>It is recommended to encrypt OpenSearch domains that contain sensitive information.</p>
+<p>OpenSearch handles encryption and decryption transparently, so no further modifications to the application are necessary.</p>
 <h2>Sensitive Code Example</h2>
 <p>For <a href="https://docs.aws.amazon.com/cdk/api/v2/python/aws_cdk.aws_opensearchservice/Domain.html">aws_cdk.aws_opensearchservice.Domain</a>:</p>
 <pre>
diff --git a/sonarpedia.json b/sonarpedia.json
@@ -3,7 +3,7 @@
   "languages": [
     "PY"
   ],
-  "latest-update": "2022-10-14T12:58:57.615105Z",
+  "latest-update": "2022-11-03T10:54:41.092693Z",
   "options": {
     "no-language-in-filenames": true,
     "preserve-filenames": true
