Ruby: Add change note for rb/insecure-download

hmac · hmac · commit f35379bf8c77 · 2022-04-27T12:47:09.000+12:00
diff --git a/ruby/ql/src/change-notes/2022-04-14-rb-insecure-download.md b/ruby/ql/src/change-notes/2022-04-14-rb-insecure-download.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `rb/insecure-download`. The query finds cases where executables and other sensitive files are downloaded over an insecure connection, which may allow for man-in-the-middle attacks.
diff --git a/ruby/ql/src/queries/security/cwe-829/InsecureDownload.ql b/ruby/ql/src/queries/security/cwe-829/InsecureDownload.ql
@@ -1,7 +1,7 @@
 /**
  * @name Download of sensitive file through insecure connection
  * @description Downloading executables and other sensitive files over an insecure connection
- *              opens up for potential man-in-the-middle attacks.
+ *              may allow man-in-the-middle attacks.
  * @kind path-problem
  * @problem.severity error
  * @security-severity 8.1

-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +---
 +category: newQuery
 +---
 +* Added a new query, `rb/insecure-download`. The query finds cases where executables and other sensitive files are downloaded over an insecure connection, which may allow for man-in-the-middle attacks.