Skip to content

Commit 0e913a1

Browse files
aschackmullaschackmull
authored
Merge pull request github#6220 from github/workflow/coverage/update
Update CSV framework coverage reports
2 parents 1d56748 + 56419bc commit 0e913a1

File tree

2 files changed

+66
-59
lines changed

2 files changed

+66
-59
lines changed

java/documentation/library-coverage/coverage.csv

Lines changed: 61 additions & 54 deletions
Original file line numberDiff line numberDiff line change
@@ -1,54 +1,61 @@
1-
package,sink,source,summary,sink:bean-validation,sink:create-file,sink:header-splitting,sink:information-leak,sink:jexl,sink:ldap,sink:open-url,sink:set-hostname-verifier,sink:url-open-stream,sink:url-redirect,sink:xpath,sink:xss,source:remote,summary:taint,summary:value
2-
android.util,,16,,,,,,,,,,,,,,16,,
3-
android.webkit,3,2,,,,,,,,,,,,,3,2,,
4-
com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,1,
5-
com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,1,
6-
com.fasterxml.jackson.databind,,,3,,,,,,,,,,,,,,3,
7-
com.google.common.base,,,85,,,,,,,,,,,,,,62,23
8-
com.google.common.io,6,,73,,,,,,,,,6,,,,,72,1
9-
com.unboundid.ldap.sdk,17,,,,,,,,17,,,,,,,,,
10-
jakarta.ws.rs.client,1,,,,,,,,,1,,,,,,,,
11-
jakarta.ws.rs.core,2,,143,,,,,,,,,,2,,,,88,55
12-
java.beans,,,1,,,,,,,,,,,,,,1,
13-
java.io,3,,20,,3,,,,,,,,,,,,20,
14-
java.lang,,,3,,,,,,,,,,,,,,1,2
15-
java.net,10,3,6,,,,,,,10,,,,,,3,6,
16-
java.nio,10,,2,,10,,,,,,,,,,,,2,
17-
java.util,,,295,,,,,,,,,,,,,,15,280
18-
javax.naming.directory,1,,,,,,,,1,,,,,,,,,
19-
javax.net.ssl,2,,,,,,,,,,2,,,,,,,
20-
javax.servlet,4,21,2,,,3,1,,,,,,,,,21,2,
21-
javax.validation,1,1,,1,,,,,,,,,,,,1,,
22-
javax.ws.rs.client,1,,,,,,,,,1,,,,,,,,
23-
javax.ws.rs.core,3,,143,,,1,,,,,,,2,,,,88,55
24-
javax.xml.transform.sax,,,4,,,,,,,,,,,,,,4,
25-
javax.xml.transform.stream,,,2,,,,,,,,,,,,,,2,
26-
javax.xml.xpath,3,,,,,,,,,,,,,3,,,,
27-
org.apache.commons.codec,,,2,,,,,,,,,,,,,,2,
28-
org.apache.commons.collections,,,99,,,,,,,,,,,,,,4,95
29-
org.apache.commons.collections4,,,99,,,,,,,,,,,,,,4,95
30-
org.apache.commons.io,,,22,,,,,,,,,,,,,,22,
31-
org.apache.commons.jexl2,15,,,,,,,15,,,,,,,,,,
32-
org.apache.commons.jexl3,15,,,,,,,15,,,,,,,,,,
33-
org.apache.commons.lang3,,,420,,,,,,,,,,,,,,292,128
34-
org.apache.commons.text,,,272,,,,,,,,,,,,,,220,52
35-
org.apache.directory.ldap.client.api,1,,,,,,,,1,,,,,,,,,
36-
org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,1,
37-
org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,1,2,39,
38-
org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,2,
39-
org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,18,6
40-
org.apache.http,27,3,70,,,,,,,25,,,,,2,3,62,8
41-
org.dom4j,20,,,,,,,,,,,,,20,,,,
42-
org.springframework.beans,,,26,,,,,,,,,,,,,,,26
43-
org.springframework.http,14,,,,,,,,,14,,,,,,,,
44-
org.springframework.ldap.core,14,,,,,,,,14,,,,,,,,,
45-
org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,6,,
46-
org.springframework.util,,,139,,,,,,,,,,,,,,87,52
47-
org.springframework.validation,,,13,,,,,,,,,,,,,,13,
48-
org.springframework.web.client,13,3,,,,,,,,13,,,,,,3,,
49-
org.springframework.web.context.request,,8,,,,,,,,,,,,,,8,,
50-
org.springframework.web.multipart,,12,,,,,,,,,,,,,,12,,
51-
org.springframework.web.reactive.function.client,2,,,,,,,,,2,,,,,,,,
52-
org.xml.sax,,,1,,,,,,,,,,,,,,1,
53-
org.xmlpull.v1,,3,,,,,,,,,,,,,,3,,
54-
play.mvc,,4,,,,,,,,,,,,,,4,,
1+
package,sink,source,summary,sink:bean-validation,sink:create-file,sink:header-splitting,sink:information-leak,sink:jexl,sink:ldap,sink:open-url,sink:set-hostname-verifier,sink:sql,sink:url-open-stream,sink:url-redirect,sink:xpath,sink:xss,source:remote,summary:taint,summary:value
2+
android.content,8,,,,,,,,,,,8,,,,,,,
3+
android.database,59,,,,,,,,,,,59,,,,,,,
4+
android.util,,16,,,,,,,,,,,,,,,16,,
5+
android.webkit,3,2,,,,,,,,,,,,,,3,2,,
6+
com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,,1,
7+
com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,,1,
8+
com.fasterxml.jackson.databind,,,3,,,,,,,,,,,,,,,3,
9+
com.google.common.base,,,85,,,,,,,,,,,,,,,62,23
10+
com.google.common.io,6,,73,,,,,,,,,,6,,,,,72,1
11+
com.unboundid.ldap.sdk,17,,,,,,,,17,,,,,,,,,,
12+
jakarta.ws.rs.client,1,,,,,,,,,1,,,,,,,,,
13+
jakarta.ws.rs.core,2,,143,,,,,,,,,,,2,,,,88,55
14+
java.beans,,,1,,,,,,,,,,,,,,,1,
15+
java.io,3,,20,,3,,,,,,,,,,,,,20,
16+
java.lang,,,3,,,,,,,,,,,,,,,1,2
17+
java.net,10,3,6,,,,,,,10,,,,,,,3,6,
18+
java.nio,10,,2,,10,,,,,,,,,,,,,2,
19+
java.sql,7,,,,,,,,,,,7,,,,,,,
20+
java.util,,,295,,,,,,,,,,,,,,,15,280
21+
javax.naming.directory,1,,,,,,,,1,,,,,,,,,,
22+
javax.net.ssl,2,,,,,,,,,,2,,,,,,,,
23+
javax.servlet,4,21,2,,,3,1,,,,,,,,,,21,2,
24+
javax.validation,1,1,,1,,,,,,,,,,,,,1,,
25+
javax.ws.rs.client,1,,,,,,,,,1,,,,,,,,,
26+
javax.ws.rs.core,3,,143,,,1,,,,,,,,2,,,,88,55
27+
javax.xml.transform.sax,,,4,,,,,,,,,,,,,,,4,
28+
javax.xml.transform.stream,,,2,,,,,,,,,,,,,,,2,
29+
javax.xml.xpath,3,,,,,,,,,,,,,,3,,,,
30+
org.apache.commons.codec,,,2,,,,,,,,,,,,,,,2,
31+
org.apache.commons.collections,,,99,,,,,,,,,,,,,,,4,95
32+
org.apache.commons.collections4,,,99,,,,,,,,,,,,,,,4,95
33+
org.apache.commons.io,,,22,,,,,,,,,,,,,,,22,
34+
org.apache.commons.jexl2,15,,,,,,,15,,,,,,,,,,,
35+
org.apache.commons.jexl3,15,,,,,,,15,,,,,,,,,,,
36+
org.apache.commons.lang3,,,420,,,,,,,,,,,,,,,292,128
37+
org.apache.commons.text,,,272,,,,,,,,,,,,,,,220,52
38+
org.apache.directory.ldap.client.api,1,,,,,,,,1,,,,,,,,,,
39+
org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,,1,
40+
org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,,1,2,39,
41+
org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,,2,
42+
org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,,18,6
43+
org.apache.http,27,3,70,,,,,,,25,,,,,,2,3,62,8
44+
org.apache.ibatis.jdbc,6,,,,,,,,,,,6,,,,,,,
45+
org.dom4j,20,,,,,,,,,,,,,,20,,,,
46+
org.hibernate,7,,,,,,,,,,,7,,,,,,,
47+
org.jooq,1,,,,,,,,,,,1,,,,,,,
48+
org.springframework.beans,,,26,,,,,,,,,,,,,,,,26
49+
org.springframework.http,14,,,,,,,,,14,,,,,,,,,
50+
org.springframework.jdbc.core,10,,,,,,,,,,,10,,,,,,,
51+
org.springframework.ldap.core,14,,,,,,,,14,,,,,,,,,,
52+
org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,,6,,
53+
org.springframework.util,,,139,,,,,,,,,,,,,,,87,52
54+
org.springframework.validation,,,13,,,,,,,,,,,,,,,13,
55+
org.springframework.web.client,13,3,,,,,,,,13,,,,,,,3,,
56+
org.springframework.web.context.request,,8,,,,,,,,,,,,,,,8,,
57+
org.springframework.web.multipart,,12,,,,,,,,,,,,,,,12,,
58+
org.springframework.web.reactive.function.client,2,,,,,,,,,2,,,,,,,,,
59+
org.xml.sax,,,1,,,,,,,,,,,,,,,1,
60+
org.xmlpull.v1,,3,,,,,,,,,,,,,,,3,,
61+
play.mvc,,4,,,,,,,,,,,,,,,4,,

java/documentation/library-coverage/coverage.rst

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -7,16 +7,16 @@ Java framework & library support
77
:widths: auto
88

99
Framework / library,Package,Flow sources,Taint & value steps,Sinks (total),`CWE‑022` :sub:`Path injection`,`CWE‑036` :sub:`Path traversal`,`CWE‑079` :sub:`Cross-site scripting`,`CWE‑089` :sub:`SQL injection`,`CWE‑090` :sub:`LDAP injection`,`CWE‑094` :sub:`Code injection`,`CWE‑319` :sub:`Cleartext transmission`
10-
Android,``android.*``,18,,3,,,3,,,,
10+
Android,``android.*``,18,,70,,,3,67,,,
1111
`Apache Commons Collections <https://commons.apache.org/proper/commons-collections/>`_,"``org.apache.commons.collections``, ``org.apache.commons.collections4``",,198,,,,,,,,
1212
`Apache Commons IO <https://commons.apache.org/proper/commons-io/>`_,``org.apache.commons.io``,,22,,,,,,,,
1313
`Apache Commons Lang <https://commons.apache.org/proper/commons-lang/>`_,``org.apache.commons.lang3``,,420,,,,,,,,
1414
`Apache Commons Text <https://commons.apache.org/proper/commons-text/>`_,``org.apache.commons.text``,,272,,,,,,,,
1515
`Apache HttpComponents <https://hc.apache.org/>`_,"``org.apache.hc.core5.*``, ``org.apache.http``",5,136,28,,,3,,,,25
1616
`Google Guava <https://guava.dev/>`_,``com.google.common.*``,,158,6,,6,,,,,
17-
Java Standard Library,``java.*``,3,327,23,13,,,,,,10
17+
Java Standard Library,``java.*``,3,327,30,13,,,7,,,10
1818
Java extensions,"``javax.*``, ``jakarta.*``",22,294,18,,,,,1,1,2
19-
`Spring <https://spring.io/>`_,``org.springframework.*``,29,178,43,,,,,14,,29
20-
Others,"``com.esotericsoftware.kryo.io``, ``com.esotericsoftware.kryo5.io``, ``com.fasterxml.jackson.databind``, ``com.unboundid.ldap.sdk``, ``org.apache.commons.codec``, ``org.apache.commons.jexl2``, ``org.apache.commons.jexl3``, ``org.apache.directory.ldap.client.api``, ``org.dom4j``, ``org.xml.sax``, ``org.xmlpull.v1``, ``play.mvc``",7,8,68,,,,,18,,
21-
Totals,,84,2013,189,13,6,6,,33,1,66
19+
`Spring <https://spring.io/>`_,``org.springframework.*``,29,178,53,,,,10,14,,29
20+
Others,"``com.esotericsoftware.kryo.io``, ``com.esotericsoftware.kryo5.io``, ``com.fasterxml.jackson.databind``, ``com.unboundid.ldap.sdk``, ``org.apache.commons.codec``, ``org.apache.commons.jexl2``, ``org.apache.commons.jexl3``, ``org.apache.directory.ldap.client.api``, ``org.apache.ibatis.jdbc``, ``org.dom4j``, ``org.hibernate``, ``org.jooq``, ``org.xml.sax``, ``org.xmlpull.v1``, ``play.mvc``",7,8,82,,,,14,18,,
21+
Totals,,84,2013,287,13,6,6,98,33,1,66
2222

0 commit comments

Comments
 (0)